Hello,
I have just done my first setup of a dockerized nextcloud server with basically this setup:
which is basically:
dockered_nginx -> dockered_nextcloud
Since I want to use several servers on this host and use sobdomains to forward the clients to the specific host, I use a host nginx reverse proxy before the setup:
host_nginx -> dockered_nginx -> dockered_nextcloud
The setup works fine, BUT all the accesses to the nextcloud instance come from the internal IP of the dockered_nginx container
So if ANY user makes wrong login attemts, Nextcloud slows down the login process for ANY user, since every user has the IP of the dockerized_nginx container.
I realized it when I wanted to install fail2ban based on the log in
/var/lib/docker/volumes/fpm_nextcloud/_data/data/nextcloud.log
Which is not possible, because there is always just the IP of the nginx container shown.
Is there any way how I can overcome this issue?
This is a part of my host nginx.conf:
server {
server_name my1.subdomain.net
location / {
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_read_timeout 180s;
proxy_pass http://127.0.0.1:8080;
}
}
Can anybody help me here or give me a hint how to overcome this issue?
Thanks
Matse