diff --git a/reverse-proxy.md b/reverse-proxy.md index c7ae0b29..eb9c72bf 100644 --- a/reverse-proxy.md +++ b/reverse-proxy.md @@ -556,61 +556,67 @@ The examples below define the dynamic configuration in YAML files. If you rather # STATIC CONFIGURATION entryPoints: - https: - address: ":443" # Create an entrypoint called "https" that uses port 443 + https: + address: ":443" # Create an entrypoint called "https" that uses port 443 + # If you want to enable HTTP/3 support, uncomment the line below + # http3: {} certificatesResolvers: - # Define "letsencrypt" certificate resolver - letsencrypt: - acme: - storage: /letsencrypt/acme.json # Defines the path where certificates should be stored - email: # Where LE sends notification about certificates expiring - tlschallenge: true + # Define "letsencrypt" certificate resolver + letsencrypt: + acme: + storage: /letsencrypt/acme.json # Defines the path where certificates should be stored + email: # Where LE sends notification about certificates expiring + tlschallenge: true providers: - file: - directory: "/path/to/dynamic/conf" # Adjust the path according your needs. - watch: true + file: + directory: "/path/to/dynamic/conf" # Adjust the path according your needs. + watch: true + + # Enable HTTP/3 feature by uncommenting the lines below. Don't forget to route 443 UDP to Traefik (Firewall\NAT\Traefik Container) + # experimental: + # http3: true ``` 1. Declare the router, service and middlewares for Nextcloud in `/path/to/dynamic/conf/nextcloud.yml`: ```yml http: - routers: - nextcloud: - rule: "Host(``)" - entrypoints: - - "https" - service: nextcloud - middlewares: - - nextcloud-chain - tls: - certresolver: "letsencrypt" + routers: + nextcloud: + rule: "Host(``)" + entrypoints: + - "https" + service: nextcloud + middlewares: + - nextcloud-chain + tls: + certresolver: "letsencrypt" - services: - nextcloud: - loadBalancer: - servers: - - url: "http://localhost:11000" # Use the host's IP address if Traefik runs outside the host network + services: + nextcloud: + loadBalancer: + servers: + - url: "http://localhost:11000" # Use the host's IP address if Traefik runs outside the host network - middlewares: - nextcloud-secure-headers: - headers: - hostsProxyHeaders: - - "X-Forwarded-Host" - referrerPolicy: "same-origin" + middlewares: + nextcloud-secure-headers: + headers: + hostsProxyHeaders: + - "X-Forwarded-Host" + referrerPolicy: "same-origin" - https-redirect: - redirectscheme: - scheme: https - - nextcloud-chain: - chain: - middlewares: - # - ... (e.g. rate limiting middleware) - - https-redirect - - nextcloud-secure-headers + https-redirect: + redirectscheme: + scheme: https + + nextcloud-chain: + chain: + middlewares: + # - ... (e.g. rate limiting middleware) + - https-redirect + - nextcloud-secure-headers ``` ---