Hi,
I have working Windows 10 VM, and I am able to access GUI using Console/noVNC. However, I have configured reverse proxy on Apache (with limited IPs allowed) to access Proxmox VMs remotely. Unfortunately I can't access Console/noVNC when I am outside of local network, which I understand is because VM has local IP address only. Is there any option to pass the traffic?
This is my Apache config:
	
	
	
		
				
			I have working Windows 10 VM, and I am able to access GUI using Console/noVNC. However, I have configured reverse proxy on Apache (with limited IPs allowed) to access Proxmox VMs remotely. Unfortunately I can't access Console/noVNC when I am outside of local network, which I understand is because VM has local IP address only. Is there any option to pass the traffic?
This is my Apache config:
		Code:
	
	<IfModule mod_ssl.c>                                                                                                                                
<Virtualhost *:80>                                                                                                                                      
        ServerName gdynia.domain.com                                                                                                      
        Redirect permanent / https://gdynia.domain.com/                                                                            
        LogLevel warn                                                                                                                                   
        SetEnvIf Remote_Addr "::1" dontlog                                                                                                  
        CustomLog "/var/log/apache2/gdynia.domain.com_custom.log" combined                                      
        ErrorLog "/var/log/apache2/gdynia.domain.com_error.log"                                                            
</Virtualhost>                                                                                                                                             
                                                                                                   
<Virtualhost *:443>                                                                                                                                   
        ServerName gdynia.domain.com
        SSLEngine On
        SSLProxyEngine On
        SSLProxyVerify none
        SSLProxyCheckPeerCN     off
        SSLProxyCheckPeerName   off
        SSLProxyCheckPeerExpire off
        SSLCertificateFile      /etc/letsencrypt/live/gdynia.domain.com/fullchain.pem
        SSLCertificateKeyFile   /etc/letsencrypt/live/gdynia.domain.com/privkey.pem
        Header always set Strict-Transport-Security "max-age=15768000"
        <Proxy "*">
                Require all denied
                Require ip 9.10.11.12/32
                Require ip 5.6.7.8/24
                Require ip 1.2.3.4/32
        </Proxy>
        ProxyRequests off
        ProxyPreserveHost on
        RequestHeader unset Accept-Encoding
        ProxyPass / https://192.168.100.1:8006/ connectiontimeout=5 timeout=300 retry=0
        ProxyPassReverse        /  https://192.168.100.1:8006/
        # Websocket
        ProxyPass / wss://192.168.100.1:8006/ retry=0
        ProxyPassReverse / wss://192.168.100.1:8006/
        LogLevel warn
        SetEnvIf Remote_Addr "::1" dontlog
        CustomLog "/var/log/apache2/gdynia.domain.com_custom.log" combined
        ErrorLog "/var/log/apache2/gdynia.domain.com_error.log"
</Virtualhost>
</IfModule>
SSLProtocol                             all -SSLv3 -TLSv1 -TLSv1.1
SSLCipherSuite                          ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256
SSLHonorCipherOrder                     on
SSLCompression                          off
SSLSessionTickets                       off
SSLUseStapling                          on
SSLStaplingResponderTimeout             5
SSLStaplingReturnResponderErrors        off
SSLStaplingCache                        shmcb:/var/run/ocsp(128000)
			
				Last edited: 
				
		
	
										
										
											
	
										
									
								 
	