SSL Pass-Through in Nginx Reverse proxy?

by

Not sure how much it can work in your situation, but newer (1.9.3+) versions of Nginx can pass (encrypted) TLS packets directly to an upstream server, using the stream block :

stream {
  server {
    listen     443;
    proxy_pass backend.example.com:443;
  }
}

If you want to target multiple upstream servers, distinguished by their hostnames, this is possible by using the nginx modules ngx_stream_ssl_preread and ngx_stream_map. The concept behind this is TLS Server Name Indication.
Dave T. outlines a solution nicely. See his answer on this network.

More Related Contents:

  1. Nginx — static file serving confusion with root & alias
  2. Nginx: Redirect non-www to www https
  3. Why is nginx responding to any domain name?
  4. How to edit nginx.conf to increase file size upload
  5. nginx doesn’t listen on port 80 twice?
  6. Nginx reverse proxy causing 504 Gateway Timeout
  7. Possible reason for NGINX 499 error codes
  8. Setup nginx not to crash if host in upstream is not found
  9. nginx – client_max_body_size has no effect
  10. NGINX: upstream timed out (110: Connection timed out) while reading response header from upstream
  11. uwsgi upstart on amazon linux
  12. How to set the allowed url length for a nginx request (error code: 414, uri too large)
  13. nginx reverse proxy – how to serve multiple apps
  14. Tuning nginx worker_process to obtain 100k hits per min
  15. Dealing with nginx 400 “The plain HTTP request was sent to HTTPS port” error
  16. nginx: [emerg] “server” directive is not allowed here
  17. nginx docker container: 502 bad gateway response
  18. Use nginx to serve static files from subdirectories of a given directory
  19. How to serve all existing static files directly with NGINX, but proxy the rest to a backend server.
  20. Nginx Different Domains on Same IP
  21. How do you change the server header returned by nginx?
  22. Configure nginx with multiple locations with different root folders on subdomain
  23. nginx server_name wildcard or catch-all
  24. How to add a response header on nginx when using proxy_pass?
  25. “proxy_pass” cannot have URI part in location given by regular expression
  26. Nginx reverse proxy multiple backends
  27. Nginx: Reject request if header is not present or wrong
  28. nginx add headers when returning 400 codes
  29. Jenkins: How to configure Jenkins behind Nginx reverse proxy for JNLP slaves to connect
  30. Assigning vhosts to Docker ports

Leave a Comment