Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

proxy mosquitto websockets in nginx to enable using TLS on mqtt #799

Open
maaikelimper opened this issue Nov 7, 2024 · 0 comments
Open

proxy mosquitto websockets in nginx to enable using TLS on mqtt #799

maaikelimper opened this issue Nov 7, 2024 · 0 comments
Assignees
@maaikelimper
Labels
security Security
Milestone
sprint-016

Comments

@maaikelimper
Copy link
Collaborator

maaikelimper commented Nov 7, 2024
edited
Loading

We currently support TLS-encryption using local SSL-certificates on the wis2box-instance but this only applies to HTTP.

I propose we update nginx to add a proxy to the mosquitto websockets port

This will also resolve issues I encountered due to firewalls commonly blocking ports other than 80/443

We should also add some documentation for how users using SSL-certificate via a proxy-server can setup proxy to the wis2box-broker websockets port
@maaikelimper maaikelimper added the security Security label Nov 7, 2024
@maaikelimper maaikelimper added this to the sprint-016 milestone Nov 7, 2024
@maaikelimper maaikelimper self-assigned this Nov 7, 2024
@maaikelimper maaikelimper changed the title proxy mosquitto websockets in nginx to enable using TLS on mqtt using local SSL certificates proxy mosquitto websockets in nginx to enable using TLS on mqtt Nov 7, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@maaikelimper maaikelimper

Labels
security Security
Projects
None yet
Milestone
sprint-016
Development

No branches or pull requests
1 participant
@maaikelimper