memes

16396 readers

3324 users here now

Community rules

1. Be civil

No trolling, bigotry or other insulting / annoying behaviour

2. No politics

This is non-politics community. For political memes please go to !politicalmemes@lemmy.world

3. No recent reposts

Check for reposts when posting a meme, you can only repost after 1 month

4. No bots

No bots without the express approval of the mods or the admins

5. No Spam/Ads

No advertisements or spam. This is an instance rule and the only way to live.

founded 2 years ago

MODERATORS

427

submitted 3 days ago by oplkill@lemmy.world to c/memes@lemmy.world

50 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] 30p87@feddit.org 29 points 3 days ago (3 children)

Unix sockets all the way. The only open ports for web traffic should be the reverse proxy (so nginx).

[–] passepartout@feddit.org 16 points 3 days ago* (last edited 3 days ago)

Or Caddy (simpler than and imho spiritual successor to nginx).

Or Traefik (has loads of convenient middlewares for reverse proxy stuff).

Or Apache (if it is somehow better suited to your use case).

[–] marduk@lemmy.sdf.org 8 points 3 days ago (3 children)

Is haproxy okay?

[–] hperrin@lemmy.ca 1 points 2 days ago

Haproxy is great, but setup is hard. It’s more for load balancing than being an easy reverse proxy.

[–] floquant@lemmy.dbzer0.com 2 points 3 days ago

haproxy is awesome

[–] Mora@pawb.social -1 points 3 days ago* (last edited 2 days ago)

Seeing that Red Hat also uses this in OpenShift: no. ~/s~

[–] x00z@lemmy.world 3 points 3 days ago

I use docker ports but only allow the loopback like this: 127.0.0.1:11551:80

And then serve that app with the reverse proxy.