this post was submitted on 21 Jul 2025
448 points (98.5% liked)
memes
16906 readers
3029 users here now
Community rules
1. Be civil
No trolling, bigotry or other insulting / annoying behaviour
2. No politics
This is non-politics community. For political memes please go to !politicalmemes@lemmy.world
3. No recent reposts
Check for reposts when posting a meme, you can only repost after 1 month
4. No bots
No bots without the express approval of the mods or the admins
5. No Spam/Ads/AI Slop
No advertisements or spam. This is an instance rule and the only way to live. We also consider AI slop to be spam in this community and is subject to removal.
A collection of some classic Lemmy memes for your enjoyment
Sister communities
- !tenforward@lemmy.world : Star Trek memes, chat and shitposts
- !lemmyshitpost@lemmy.world : Lemmy Shitposts, anything and everything goes.
- !linuxmemes@lemmy.world : Linux themed memes
- !comicstrips@lemmy.world : for those who love comic stories.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Unix sockets all the way. The only open ports for web traffic should be the reverse proxy (so nginx).
Or Caddy (simpler than and imho spiritual successor to nginx).
Or Traefik (has loads of convenient middlewares for reverse proxy stuff).
Or Apache (if it is somehow better suited to your use case).
Is haproxy okay?
haproxy is awesome
Haproxy is great, but setup is hard. It’s more for load balancing than being an easy reverse proxy.
Seeing that Red Hat also uses this in OpenShift: no. ~/s~
I use docker ports but only allow the loopback like this:
127.0.0.1:11551:80And then serve that app with the reverse proxy.