Expected Behaviour:
2 Pihole's running on Raspi4B
Local dns
https://pihole(1/2).mydomain.be
--> local dns set in hosts
SSL config (placed in conf-enabled) + certificates:
#Loading openssl
server.modules += ( "mod_openssl" )
setenv.add-environment = ("fqdn" => "true")
$SERVER["socket"] == ":443" {
ssl.engine = "enable"
ssl.pemfile = "etc/lighttpd/ssl/combined.pem"
ssl.openssl.ssl-conf-cmd = ("MinProtocol" => "TLSv1.3", "Options" => "-ServerPreference")
}
# Redirect HTTP to HTTPS
$HTTP["scheme"] == "http" {
$HTTP["host"] =~ ".*" {
url.redirect = (".*" => "https://%0$0")
}
}
Through Nginx proxy manager
https://pihole(1/2).mydomain.be
Same config Pi-Hole
Nginx set: https://pi-hole.mydomain.be --> https://ipoffpihole:443
On Buster all working fine.
Also did clean install on a VM with same result...
Actual Behaviour:
On Bullseye:
Locals dns: working as before
Through Nginx Proxy manager: "502 Bad Gateway"
If I remove my SSL certificate from Pihole and set to proxy https://pi-hole.mydomain.be --> https://ipoffpihole:80 it's also working but then I don't have my local https anymore
What could be changed?
Debug Token:
https://tricorder.pi-hole.net/6CzlFKOG/
Nginx Log:
2023/01/24 08:49:01 [error] 517#517: *1266 connect() failed (111: Connection refused) while connecting to upstream, client: "my ip adress", server: pi-hole-master.mydomain, request: "GET /admin/ HTTP/2.0", upstream: "https://10.10.100.51:443/admin/", host: "pi-hole-master.mydomain.be"
Nginx Log (when ssl config is removed from PiHole and nginx is set to connect to http):
24/Jan/2023:08:49:01 +0100] - 502 502 - GET https pi-hole-master.mydomain.be "/admin/" [Client "my ip adress"] [Length 154] [Gzip -] [Sent-to 10.10.100.51] "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/109.0" "-"