Looking for some help solving certificate problems with my 918+ NAS before I start putting this thing to some serious use. I'm trying to get my DSM traffic to route from 5000 to 5001
Goal:
1. Accessing the NAS for local shared storage and backup, Webdav, Moments, Drive desktop sync and I want to install the web server packages to host two different Wordpress websites. Before I do that, I want to get this certificate and port situation under control. I'd like all traffic going over HTTPS and with valid SSL Certificates.
2. Be able to host multiple websites and not get "webserver is running" pages when I visit my example.com main FQDN
3. Use reverse proxy to hide port numbers.
Been using the NAS for local storage over SMB and AFP and accessing DSM and apps via the browser just fine. I have a VM running in VMM for my daily use. I've had some issues with SSL and certificates but nothing that has stopped me from using the services so I've ignored getting my certificate situation right until now. I've fooled around with these all day and I just can't figure it out.
Current situation:
Using incognito browser windows, inputting both www and non-www.Example.com resolves to the correct domain but with http and not secure. Adding https:// in front of the url gets you to the exact same site but now secure. I want it to show up with the https secure site no matter what version of the url I enter.
:::Settings as of 2/24/21:::
Custom URL (example.com) registered with Name Servers pointing to NoIP.
Home Router:
Port 80->80 tcp/udp
Port 443->443 tcp/udp
DDNS with NoIP:
Example.com -> 78.78.78.78
www.Example.com -> 78.78.78.78
Synology Reverse Proxy:
(All have websocket header of -> $http_upgrade and Connection $connection_upgrade)
Example Domain -> https://localhost:5001
Example Domain -> https://localhost:5001
Example Domain -> https://localhost:5001 - checked HSTS
Example Domain -> https://localhost:5001 - checked HSTS
Synology Certificate (Let's Encrypt):
Domain Name: Example.com
Subject Alternative Name: www.Example.com
Set as default and assigned to all applications available
DSM Settings:
Http port: 5000
Https port: 5001
Automatically redirect HTTP connection to HTTPS for DSM desktop - checked (I really thought this is what would fix it. Is the reverse proxy breaking it?)
Enable Server header in http responses NGINX - checked
Enable HTTP/2 - checked
What do I need to do here?
Goal:
1. Accessing the NAS for local shared storage and backup, Webdav, Moments, Drive desktop sync and I want to install the web server packages to host two different Wordpress websites. Before I do that, I want to get this certificate and port situation under control. I'd like all traffic going over HTTPS and with valid SSL Certificates.
2. Be able to host multiple websites and not get "webserver is running" pages when I visit my example.com main FQDN
3. Use reverse proxy to hide port numbers.
Been using the NAS for local storage over SMB and AFP and accessing DSM and apps via the browser just fine. I have a VM running in VMM for my daily use. I've had some issues with SSL and certificates but nothing that has stopped me from using the services so I've ignored getting my certificate situation right until now. I've fooled around with these all day and I just can't figure it out.
Current situation:
Using incognito browser windows, inputting both www and non-www.Example.com resolves to the correct domain but with http and not secure. Adding https:// in front of the url gets you to the exact same site but now secure. I want it to show up with the https secure site no matter what version of the url I enter.
:::Settings as of 2/24/21:::
Custom URL (example.com) registered with Name Servers pointing to NoIP.
Home Router:
Port 80->80 tcp/udp
Port 443->443 tcp/udp
DDNS with NoIP:
Example.com -> 78.78.78.78
www.Example.com -> 78.78.78.78
Synology Reverse Proxy:
(All have websocket header of -> $http_upgrade and Connection $connection_upgrade)
Example Domain -> https://localhost:5001
Example Domain -> https://localhost:5001
Example Domain -> https://localhost:5001 - checked HSTS
Example Domain -> https://localhost:5001 - checked HSTS
Synology Certificate (Let's Encrypt):
Domain Name: Example.com
Subject Alternative Name: www.Example.com
Set as default and assigned to all applications available
DSM Settings:
Http port: 5000
Https port: 5001
Automatically redirect HTTP connection to HTTPS for DSM desktop - checked (I really thought this is what would fix it. Is the reverse proxy breaking it?)
Enable Server header in http responses NGINX - checked
Enable HTTP/2 - checked
What do I need to do here?