vantzs/corrosion-admin-panel
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 18 Wiki Activity
Files
main
corrosion-admin-panel/infra/NPM-CONFIG.md
Vantz Stockwell 69fec4a0fa fix: Move Gitea SSH to port 8095 (keep all infra in 809x range) 
Changed: 2222 → 8095 for SSH
Keeps all infrastructure ports sequential: 8090-8095

Port allocation:
- 8090: Gitea HTTP
- 8091: SeaweedFS Filer
- 8092: SeaweedFS S3
- 8093: SeaweedFS Master
- 8094: SeaweedFS Volume
- 8095: Gitea SSH

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-02-15 13:23:43 -05:00

2.4 KiB
Raw Permalink Blame History

Nginx Proxy Manager Configuration

Required Proxy Hosts

1. Gitea (Source Control)

Domain Names:

  • git.corrosionmgmt.com

Details:

Scheme: http
Forward Hostname / IP: <asgard-internal-ip>
Forward Port: 8090
Cache Assets: No
Block Common Exploits: Yes
Websockets Support: Yes

SSL:

Force SSL: Yes
HTTP/2 Support: Yes
HSTS Enabled: Yes

Advanced (if needed):

# For SSH git clone support over HTTPS (optional)
location ~ ^/(.+\.git)/(git-upload-pack|git-receive-pack)$ {
    proxy_pass http://<asgard-ip>:8090;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
}

2. SeaweedFS CDN (Object Storage)

Domain Names:

  • cdn.corrosionmgmt.com

Details:

Scheme: http
Forward Hostname / IP: <asgard-internal-ip>
Forward Port: 8091
Cache Assets: Yes (Enable caching for static files)
Block Common Exploits: Yes
Websockets Support: Yes

SSL:

Force SSL: Yes
HTTP/2 Support: Yes
HSTS Enabled: Yes

Custom Locations (Optional):

If you want to expose the S3 API at a different path:

# S3 API at cdn.corrosionmgmt.com/s3
location /s3/ {
    proxy_pass http://<asgard-ip>:8092/;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
}

Port Summary

Service Container Internal Port Host Port Domain
Gitea Web corrosion-gitea 3000 8090 git.corrosionmgmt.com
Gitea SSH corrosion-gitea 22 8095 git.corrosionmgmt.com:8095
SeaweedFS Filer corrosion-cdn 8888 8091 cdn.corrosionmgmt.com
SeaweedFS S3 corrosion-cdn 8333 8092 Internal only
SeaweedFS Master corrosion-cdn 9333 8093 Internal only
SeaweedFS Volume corrosion-cdn 8080 8094 Internal only

Testing

After configuring NPM, test the proxies:

# Test Gitea
curl -I https://git.corrosionmgmt.com

# Test SeaweedFS CDN
curl -I https://cdn.corrosionmgmt.com

# Test S3 API (internal)
curl http://<asgard-ip>:8092/

Firewall Rules (if applicable)

If Asgard has a firewall, ensure these ports are accessible:

From Nginx Proxy Manager to Asgard:

  • 8090 (Gitea)
  • 8091 (SeaweedFS Filer)

Optional (for internal access):

  • 8092 (S3 API - for backend services)
  • 9333 (Master UI - for admin)

External SSH (if using git over SSH):

  • 8095 (Gitea SSH)
Reference in New Issue View Git Blame Copy Permalink