From 77f69fc2278cbc621b841a2db5eeb192245697cc Mon Sep 17 00:00:00 2001
From: Elizabeth Hunt <elizabeth.hunt@simponic.xyz>
Date: Thu, 17 Oct 2024 23:57:35 -0400
Subject: fix proto tcp failure

---
 .../webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf | 4 +++-
 roles/webservers/files/levi/https.rainrain.xyz.servconf               | 4 ++--
 2 files changed, 5 insertions(+), 3 deletions(-)

(limited to 'roles/webservers')

diff --git a/roles/webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf b/roles/webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf
index d532ee1..8c707b4 100644
--- a/roles/webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf
+++ b/roles/webservers/files/levi/https.ntfy.simponic.hatecomputers.club.conf
@@ -1,5 +1,7 @@
 server {
-  listen 4443 ssl;
+  listen 4443 ssl proxy_protocol;
+  real_ip_header proxy_protocol;
+  set_real_ip_from 127.0.0.1;
 
   allow  10.0.0.0/8;
   allow  100.64.0.0/12;
diff --git a/roles/webservers/files/levi/https.rainrain.xyz.servconf b/roles/webservers/files/levi/https.rainrain.xyz.servconf
index 3b9dc5c..42b2535 100644
--- a/roles/webservers/files/levi/https.rainrain.xyz.servconf
+++ b/roles/webservers/files/levi/https.rainrain.xyz.servconf
@@ -1,8 +1,7 @@
 stream {
   map $ssl_preread_server_name $name {
     hostnames;
-    .rainrain.xyz  rainrainxyz;
-    default proxy;
+    .rainrain.xyz  rainrainxyz; default proxy;
   }
 
   upstream rainrainxyz {
@@ -15,6 +14,7 @@ stream {
   server {
     listen 443;
     proxy_pass $name;
+    proxy_protocol on;
     ssl_preread on;
   }
 }
-- 
cgit v1.2.3-70-g09d2