I am having trouble getting the nextcloud part working. I had moved from an old domain to a new domain and whenever I type in something like somecloud.NEW-DOMAIN.com/nextcloud or nextcloud.NEW-DOMAIN.com, or even locally at SERVER-IP-ADDRESS:444, it keeps on redirecting to nextcloud.OLD-DOMAIN.com/index.php/login, telling me that the sie can't be reach, with an ERR_CONNECTION_REFUSED message. I removed and reinstalled Let's Encrypt even once to see if it would go away, and it wouldn't.
The funny thing is that if I use the NextCloud windows app to sync my files, it has no problems connecting to my server ip address.
Here's my default site-config file
upstream backend {
server 192.168.1.10:19999;
keepalive 64;
}
server {
listen 443 ssl default_server;
listen 80 default_server;
root /config/www;
index index.html index.htm index.php;
server_name _;
ssl_certificate /config/keys/letsencrypt/fullchain.pem;
ssl_certificate_key /config/keys/letsencrypt/privkey.pem;
ssl_dhparam /config/nginx/dhparams.pem;
ssl_ciphers 'ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA';
ssl_prefer_server_ciphers on;
client_max_body_size 0;
location = / {
return 301 /htpc;
}
location /sonarr {
include /config/nginx/proxy.conf;
proxy_pass http://192.168.1.10:38989/sonarr;
}
location /radarr {
include /config/nginx/proxy.conf;
proxy_pass http://192.168.1.10:37878/radarr;
}
location /htpc {
include /config/nginx/proxy.conf;
proxy_pass http://192.168.1.10:38085/htpc;
}
location /downloads {
include /config/nginx/proxy.conf;
proxy_pass http://192.168.1.10:8112/;
proxy_set_header X-Deluge-Base "/downloads/";
}
#PLEX
location /web {
# serve the CSS code
proxy_pass http://192.168.1.6:32400;
}
# Main /plex rewrite
location /plex {
# proxy request to plex server
proxy_pass http://192.168.1.6:32400/web;
}
location /nextcloud {
include /config/nginx/proxy.conf;
proxy_pass https://192.168.1.10:444/;
}
location ~ /netdata/(?<ndpath>.*) {
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass http://backend/$ndpath$is_args$args;
proxy_http_version 1.1;
proxy_pass_request_headers on;
proxy_set_header Connection "keep-alive";
proxy_store off;
}
location /organizr {
include /config/nginx/proxy.conf;
proxy_pass http://192.168.1.10:38520/;
}
}
And here's my nextcloud site-config file
server {
listen 443 ssl;
server_name NEW-DOMAIN.com;
root /config/www;
index index.html index.htm index.php;
###SSL Certificates
ssl_certificate /config/keys/letsencrypt/fullchain.pem;
ssl_certificate_key /config/keys/letsencrypt/privkey.pem;
###Diffie–Hellman key exchange ###
ssl_dhparam /config/nginx/dhparams.pem;
###SSL Ciphers
ssl_ciphers 'ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA';
###Extra Settings###
ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:10m;
### Add HTTP Strict Transport Security ###
add_header Strict-Transport-Security "max-age=63072000; includeSubdomains";
add_header Front-End-Https on;
client_max_body_size 0;
location / {
proxy_pass https://192.168.1.10:444/;
proxy_max_temp_file_size 2048m;
include /config/nginx/proxy.conf;
}
}