Configure Nginx Proxy Manager #39

Open
opened 2025-09-14 08:10:48 +00:00 by tonym · 0 comments
Owner

Nginx Proxy Manager Configuration

Initial Setup

SSL Certificates

  • Add Lets Encrypt account email
  • Configure DNS challenge (if using wildcard):
    • Cloudflare API token
    • Or HTTP challenge for individual domains

Proxy Hosts Configuration

  • Add Sonarr:
    • Domain: sonarr.yourdomain.com
    • Forward IP: [sonarr-container-ip]
    • Port: 8989
    • Enable SSL
    • Force SSL
  • Add Radarr:
    • Domain: radarr.yourdomain.com
    • Forward IP: [radarr-container-ip]
    • Port: 7878
    • Enable SSL
  • Add Plex:
    • Domain: plex.yourdomain.com
    • Forward IP: [plex-container-ip]
    • Port: 32400
    • Enable Websockets
  • Add Overseerr:
    • Domain: request.yourdomain.com
    • Forward IP: [overseerr-container-ip]
    • Port: 5055
    • Public facing (no auth)

Access Lists

  • Create internal_only list:
    • Allow: 192.168.0.0/24
    • Deny: all
  • Apply to admin services (Sonarr, Radarr, etc.)

Advanced Configuration

  • Custom Nginx config for specific apps
  • Set up basic auth where needed
  • Configure custom error pages

Testing

  • Test each proxy host
  • Verify SSL certificates
  • Check from external network
  • Test access restrictions
## Nginx Proxy Manager Configuration ### Initial Setup - [ ] Access NPM at http://[server-ip]:81 - [ ] Default login: admin@example.com / changeme - [ ] IMMEDIATELY change admin credentials - [ ] Set up 2FA if available ### SSL Certificates - [ ] Add Lets Encrypt account email - [ ] Configure DNS challenge (if using wildcard): - [ ] Cloudflare API token - [ ] Or HTTP challenge for individual domains ### Proxy Hosts Configuration - [ ] Add Sonarr: - Domain: sonarr.yourdomain.com - Forward IP: [sonarr-container-ip] - Port: 8989 - [ ] Enable SSL - [ ] Force SSL - [ ] Add Radarr: - Domain: radarr.yourdomain.com - Forward IP: [radarr-container-ip] - Port: 7878 - [ ] Enable SSL - [ ] Add Plex: - Domain: plex.yourdomain.com - Forward IP: [plex-container-ip] - Port: 32400 - [ ] Enable Websockets - [ ] Add Overseerr: - Domain: request.yourdomain.com - Forward IP: [overseerr-container-ip] - Port: 5055 - [ ] Public facing (no auth) ### Access Lists - [ ] Create internal_only list: - Allow: 192.168.0.0/24 - Deny: all - [ ] Apply to admin services (Sonarr, Radarr, etc.) ### Advanced Configuration - [ ] Custom Nginx config for specific apps - [ ] Set up basic auth where needed - [ ] Configure custom error pages ### Testing - [ ] Test each proxy host - [ ] Verify SSL certificates - [ ] Check from external network - [ ] Test access restrictions
Sign in to join this conversation.
No Label
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: tonym/NastyNAS#39
No description provided.