Skip to content

Instantly share code, notes, and snippets.

View matthewaveryusa's full-sized avatar

Matthew Avery matthewaveryusa

  • United States
View GitHub Profile
@kekru
kekru / 01nginx-tls-sni.md
Last active October 8, 2024 10:16
nginx TLS SNI routing, based on subdomain pattern

Nginx TLS SNI routing, based on subdomain pattern

Nginx can be configured to route to a backend, based on the server's domain name, which is included in the SSL/TLS handshake (Server Name Indication, SNI).
This works for http upstream servers, but also for other protocols, that can be secured with TLS.

prerequisites

  • at least nginx 1.15.9 to use variables in ssl_certificate and ssl_certificate_key.
  • check nginx -V for the following:
    ...
    TLS SNI support enabled
@fredix
fredix / mastodon.yml
Last active June 22, 2020 11:56
docker stack yaml to run mastodon
# ce gist permet de lancer mastodon dans un swarm docker avec traefik.io. Il faut supprimer cette partie pour ne pas imposer des contraintes de location des conteneurs
deploy:
placement:
constraints:
- node.labels.location == home
# lancement sur le noeud leader avec : docker stack deploy --compose-file=mastodon.yml mastodon
version: '3'
services: