nginx load balancing internal/external working

2024-05-29 01:07:21 -04:00
parent d732fffd67
commit 3cf600b048
28 changed files with 348 additions and 197 deletions
--- a/nginx/README.md
+++ b/nginx/README.md
@@ -14,3 +14,18 @@ ansible-playbook -i ansible/inventory.yaml nginx/nginx.yaml

 We can detect whether traffic is originating internally or externally by checking if
 it came in on port 443 or 444.
+
+External traffic always come in through 444.
+
+## Certbot
+
+Use `certbot delete` to remove unused certs.
+
+## vars.yaml
+
+`allowed_ips` restricts access to the endpoint (deny all) and then allows only the list
+of ips provided.
+
+## Logging
+
+You can tail all the nginx logs with `tail -f /var/log/nginx/*`