Enable PROXY procotol for proxy hosts

2025-06-18 18:16:26 +00:00 · 2024-03-10 09:49:34 +01:00
parent d40f9e06fc
commit c6465a5090
17 changed files with 155 additions and 14 deletions
--- a/docs/advanced-config/README.md
+++ b/docs/advanced-config/README.md
@ -208,3 +208,15 @@ You can customise the logrotate configuration through a mount (if your custom co
 ```

 For reference, the default configuration can be found [here](https://github.com/NginxProxyManager/nginx-proxy-manager/blob/develop/docker/rootfs/etc/logrotate.d/nginx-proxy-manager).
+
+## Enabling Proxy Protocol for Proxy Hosts
+
+When running NPM behind a load balancer, you might want to use the [PROXY procotol](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt) to receive client information such as the source IP address (useful for banning IPs).
+
+When configuring the PROXY protocol for proxy hosts, NPM uses the ports 88 for http and 444 for https traffic to allow you to decide on a per host basis whether to use the PROSY protocol.
+
+To enable the Proxy Protocol for your hosts you need to perform the following steps:
+
+1. Expose the ports `88` (and `444` is applicable) by adjusting your `docker-compose.yml`
+2. Edit your proxy hosts to enable the PROXY protocol
+3. Edit your upstream load balancer to redirect traffic to the port `88`/`444` and enable the PROXY protocol