Hello i am using SWAG to provide a SSL Cert to OMV and ran in to a Problem i am trying to find the best solution for.
To give you a bit of a background I am using SWAG with DNS wildcards, to provide certs to all the docker apps I am running.
everything is working as it should, I can access the OMV web Ui through omv.media.domain.com and all my apps that need to be open can be accessed through *app.media.domain.com
problem with this setup is when updating docker through the web UI, once docker goes down and forces a restart of SWAG the browser loses connection to the OMV web UI mid update. the site there for is inaccessible through omv.media.domain.com and the page errors out with a 503 server not accessible code. i am still able to connect to the server by the servers IP:Port address while it is inaccessible through the DNS address.
is this the draw back of using SWAG to provide OMV a ssl cert? or is there a work around?
this is my SWAG config file:
server {
listen 443 ssl;
listen [::]:443 ssl;
http2 on;
server_name omv.*;
include /config/nginx/ssl.conf;
client_max_body_size 0;
# enable for ldap auth (requires ldap-location.conf in the location block)
#include /config/nginx/ldap-server.conf;
# enable for Authelia (requires authelia-location.conf in the location block)
#include /config/nginx/authelia-server.conf;
# enable for Authentik (requires authentik-location.conf in the location block)
#include /config/nginx/authentik-server.conf;
location / {
# enable the next two lines for http auth
#auth_basic "Restricted";
#auth_basic_user_file /config/nginx/.htpasswd;
# enable for ldap auth (requires ldap-server.conf in the server block)
#include /config/nginx/ldap-location.conf;
# enable for Authelia (requires authelia-server.conf in the server block)
#include /config/nginx/authelia-location.conf;
# enable for Authentik (requires authentik-server.conf in the server block)
#include /config/nginx/authentik-location.conf;
include /config/nginx/proxy.conf;
include /config/nginx/resolver.conf;
set $upstream_app 10.*.*.*;
set $upstream_port ****;
set $upstream_proto http;
proxy_pass $upstream_proto://$upstream_app:$upstream_port;
# REMOVE THIS LINE BEFORE SUBMITTING: Additional proxy settings such as headers go below this line, leave the blank line above.
}
# REMOVE THIS LINE BEFORE SUBMITTING: Some proxies require one or more additional location blocks for things like API or RPC endpoints.
# REMOVE THIS LINE BEFORE SUBMITTING: If the proxy you are making a sample for does not require an additional location block please remove the commented out section below.
# location ~ (/<container_name>)?/api {
# include /config/nginx/proxy.conf;
# include /config/nginx/resolver.conf;
# set $upstream_app <container_name>;
# set $upstream_port <port_number>;
# set $upstream_proto <http or https>;
# proxy_pass $upstream_proto://$upstream_app:$upstream_port;
#
# # REMOVE THIS LINE BEFORE SUBMITTING: Additional proxy settings such as headers go below this line, leave the blank line above.
# }
}