PVE Console behind NGINX Reverse Proxy - Broken after 8.1 Upgrade

[jjgg]

Hi,

I've noticed that console access to VMs appears to be broken after the 8.1 upgrade*. I have followed the "Web Interface Via Nginx Proxy" page initially, and I did just update with some extra details, but that doesn't seem to have resolved it.

I just get a



Around the time the websocket goes to make connection.


Full block:

upstream proxmox {
        zone upstreams 64K;
        server local.ip:8006;
        #keepalive 1;
}

server {
        listen remote.ip:443 ssl;
        http2 on;
        server_name remote.url;

        ###
        ### SSL
        ###
        ssl_certificate /etc/letsencrypt/live/remote.url/fullchain.pem;
        ssl_certificate_key /etc/letsencrypt/live/remote.url/privkey.pem;
        ssl_trusted_certificate /etc/letsencrypt/live/remote.url/chain.pem;
        include snippets/ssl-params-modern.conf; //From Mozilla generator
        include snippets/self-signed.conf; //SSL Client Cert

        ###
        # Setup
        ###

        access_log off;
        #access_log /var/log/nginx/remote.url-access.log;
        error_log /var/log/nginx/remote.url-error.log;

        charset utf-8;
        #client_max_body_size 100M;

        location / {
                include snippets/safeips.conf; //only specific remote IPs

                proxy_set_header Host $host;
                proxy_pass https://proxmox;
                proxy_ssl_verify off;

                proxy_set_header X-Forwarded-Proto $scheme;
                proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
                proxy_set_header X-Forwarded-Port $server_port;
                proxy_set_header X-Real-IP $remote_addr;

                proxy_http_version 1.1;
                proxy_set_header Upgrade $http_upgrade;
                proxy_set_header Connection $http_connection;

                //Added to test from Proxmox wiki in the last 24 hours
                proxy_buffering off;
                client_max_body_size 0;
                proxy_connect_timeout  3600s;
                proxy_read_timeout  3600s;
                proxy_send_timeout  3600s;
                send_timeout  3600s;
        }
}

* I didn't check this straight away, and I have done some work testing http quic with nginx/1.25.3, but disabling this hasn't made any difference.

Can anyone else confirm it's working for them? If so, I'll dig deeper.

 

[aaronstuder]

Hello!

I'm having issues as well. I have followed the "Web Interface Via Nginx Proxy" page as well. It's working for me, however I keep getting logged out... not sure why...

 

[jjgg]

After running a package update and rebooting, it now appears to work. Running pve-manager/8.1.3/b46aac3b42da5d15.