regix1 · July 23, 2023 04:56 · regix1 · Jul 23, 2023
diff --git a/!Running Pterodactyl (Panel & Wings) Behind and NGINX Reverse Proxy b/!Running Pterodactyl (Panel & Wings) Behind and NGINX Reverse Proxy
 Your panel should run on port 80 (well whatever you want I suppose)
 Node daemon port should be 443 (but still http) because it hard codes those ports into connection urls for websockets in the webui :/

 Ensure you have `TRUSTED_PROXIES=proxyip` in your `/var/www/pterodactyl/.env` file.
diff --git a/nginx_config b/nginx_config
 server {

  listen 443 ssl;

  ssl on;
  ssl_certificate /path/to/cert/fullchain.pem;
  ssl_certificate_key /path/to/cert/key.pem;


  server_name panel.domain.tld;


  location / {

      proxy_pass http://PANELIP_should_be_port_80/;
      proxy_set_header Host $host;
      client_max_body_size 50m;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header Host $host;
      proxy_set_header X-Forwarded-Proto $scheme;
      proxy_redirect off;
      proxy_buffering off;
      proxy_request_buffering off;

  }

 }
 server {

  listen 443 ssl;

  ssl on;
  ssl_certificate /path/to/cert/fullchain.pem;
  ssl_certificate_key /path/to/cert/key.pem;


  server_name node1.domain.tld;

  location ~ ^\/api\/servers\/(?<serverid>.*)?\/ws$ {

      proxy_pass http://node_ip:443/api/servers/$serverid/ws;
      proxy_http_version 1.1;
      proxy_set_header Upgrade $http_upgrade;
      proxy_set_header Connection "upgrade";
      proxy_set_header Host $host;
      client_max_body_size 50m;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-Proto $scheme;
      proxy_redirect off;
      proxy_buffering off;
      proxy_request_buffering off;


  }

  location / {

      proxy_pass http://node_ip:443/;
      proxy_set_header Host $host;
      client_max_body_size 50m;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-Proto $scheme;
      proxy_redirect off;
      proxy_buffering off;
      proxy_request_buffering off;
      
  }

 }
	Your panel should run on port 80 (well whatever you want I suppose)
	Node daemon port should be 443 (but still http) because it hard codes those ports into connection urls for websockets in the webui :/

	Ensure you have `TRUSTED_PROXIES=proxyip` in your `/var/www/pterodactyl/.env` file.
	server {

	listen 443 ssl;

	ssl on;
	ssl_certificate /path/to/cert/fullchain.pem;
	ssl_certificate_key /path/to/cert/key.pem;


	server_name panel.domain.tld;


	location / {

	proxy_pass http://PANELIP_should_be_port_80/;
	proxy_set_header Host $host;
	client_max_body_size 50m;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

	proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header Host $host;
	proxy_set_header X-Forwarded-Proto $scheme;
	proxy_redirect off;
	proxy_buffering off;
	proxy_request_buffering off;

	}

	}
	server {

	listen 443 ssl;

	ssl on;
	ssl_certificate /path/to/cert/fullchain.pem;
	ssl_certificate_key /path/to/cert/key.pem;


	server_name node1.domain.tld;

	location ~ ^\/api\/servers\/(?<serverid>.*)?\/ws$ {

	proxy_pass http://node_ip:443/api/servers/$serverid/ws;
	proxy_http_version 1.1;
	proxy_set_header Upgrade $http_upgrade;
	proxy_set_header Connection "upgrade";
	proxy_set_header Host $host;
	client_max_body_size 50m;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-Proto $scheme;
	proxy_redirect off;
	proxy_buffering off;
	proxy_request_buffering off;


	}

	location / {

	proxy_pass http://node_ip:443/;
	proxy_set_header Host $host;
	client_max_body_size 50m;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-Proto $scheme;
	proxy_redirect off;
	proxy_buffering off;
	proxy_request_buffering off;

	}

	}