Remote acces to Truenas hosted Nextcloud unsuccesfull

Apps and Virtualization
1

TL/DR I’m having issues with connecting Truenas hosted Nextcloud from remote locations

Overview of my situation:
I run Truenas Scale 24.10.2.2 on a AsRock B550M-ITX/ac with AMD Ryzen 3 (3200G) with embedded GPU and 16GB RAM.
The system runs on SSD (M.2 slot), I have 1 pool (DataTank) compiled of 4x 2TB WD Red HDD drives hosting both data as well as app shares. I have a PCIe expansion card with M.2 SSD on its way to move the apps from HDD to SSD.

Installed apps (via Ix-apps docker):

  • AdGuard Home ADG (v0.107.62 / 1.2.3)
  • FileBrowser FB (v2.33.6 / 1.3.10)
  • Nextcloud NC (v31.0.6 / 2.0.3)
  • Nginx-Proxy-Manager NPM (2.12.3 / 1.2.3)
  • Tailscale TS (v1.84.2 / 1.3.3) (used to access the TN GUI as admin only)

The networking uses following IPs:

  • 192.x.x.1 local network modem/router
  • 192.x.x.10:8081 (or 8443) local network TrueNas IP
  • 192.x.x.10:30027 local network Nextcloud IP/port
  • 217.x.x.x external IP address modem/router
  • 100.x.x.x Tailscale IP address TrueNas

Settings:

  • The router has portforwarding enabled for only ports 80&443. DHCP is disabled. DDNS is enabled with the usr/pswd/host provided by NoIP.
  • AGH has DHCP enabled, reserved IP address for TN server (static IP). No DNS rewrites are active.
  • NPM has one proxy host defined routing cloud.myname.org towards local IP https://192.x.x.10:30027. It has a SSL certificate for *.myname.org obtained from NoIP.com
  • NPM also has a redirection host defined routing *.myname.org with a HTTP code 301 to destination cloud.myname.org, in an attempt to force https traffic.
  • domain and sub-domain myname.org and cloud.myname.org are registered as private domains with NoIP.

Intention:
I want a select few family members to have access to my NextCloud environment without the need for them to use VPN services like Tailscale.

Problem / Question:
The above setup is the result from a lot of CoPilot / chatGPT tinkering. When connecting cloud.myname.org from outside my local network I finally get something more than “there is nothing”. I now get a “502 Bad Gateway” error. Is my my setup not correct? Am I still missing a step or overdoing it?

2

After copy pasting this entire story into CoPilot I finally got a breakthough…
The proxy host defined in NPM was set to scheme https as I was expecting thats what I want. But apperently the system is expecting http, so giving me an error.

now that I updated the proxy host to scheme http it works.