2 files changed, 5 insertions, 3 deletions

diff --git a/roles/webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf b/roles/webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf
index d532ee1..8c707b4 100644
--- a/roles/webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf
+++ b/roles/webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf
@@ -1,5 +1,7 @@
 server {
-  listen 4443 ssl;
+  listen 4443 ssl proxy_protocol;
+  real_ip_header proxy_protocol;
+  set_real_ip_from 127.0.0.1;
 
   allow  10.0.0.0/8;
   allow  100.64.0.0/12;
diff --git a/roles/webservers/files/levi/https.rainrain.xyz.servconf b/roles/webservers/files/levi/https.rainrain.xyz.servconf
index 3b9dc5c..42b2535 100644
--- a/roles/webservers/files/levi/https.rainrain.xyz.servconf
+++ b/roles/webservers/files/levi/https.rainrain.xyz.servconf
@@ -1,8 +1,7 @@
 stream {
   map $ssl_preread_server_name $name {
     hostnames;
-    .rainrain.xyz  rainrainxyz;
-    default proxy;
+    .rainrain.xyz  rainrainxyz; default proxy;
   }
 
   upstream rainrainxyz {
@@ -15,6 +14,7 @@ stream {
   server {
     listen 443;
     proxy_pass $name;
+    proxy_protocol on;
     ssl_preread on;
   }
 }