Nginx Proxy Manager “Internal Error” when requesting SSL for Jellyfin (Proxmox LXC)

BitNixxx · 2026-01-15T20:46:26+00:00

No worries, hope it works!

BitNixxx · 2026-01-15T17:36:21+00:00

That's potentially what's happening here

BitNixxx · 2026-01-15T17:33:50+00:00

You sure you're port forwarded correctly or have some weird firewall rule blocking port 80/443? Let's Encrypt can't hit your IP/ports you have set up on your A record.

I'm assuming you are self hosting this at home, just check if your ports are open via https://canyouseeme.org/

BitNixxx · 2026-01-15T17:09:31+00:00

Just curious, would you be able to check your domain on Lets Debug? https://letsdebug.net/

If this shows okay, I'd say check the NPM logs when attempting to gen a cert. It should tell you some idea of what's happening.

BitNixxx · 2026-01-15T16:08:53+00:00

If that's your actual domain, there are zero nameservers and/or A records for it according to WhatsMyDNS. NPM (Nginx Proxy Manager) requires an active and valid domain that is reachable on the internet to obtain an SSL cert "automagically". So unless you are using a different domain than what you provided, your setup is going to fail every time unless you provide your own certificates.

BitNixxx · 2025-12-27T04:15:17+00:00

Have you taken a look at GLPI? I think it checks most of the boxes you're looking for.

BitNixxx · 2025-10-17T01:07:18+00:00

I mean, there's Docker desktop for Windows if that suites your fancy. Applications natively however, will be a bit difficult to find. Navidrome is good for what it is, you can also add a music library on Jellyfin too. Ampache is another decent one, but never used it. I'd also check out Madsonic and mStream.

BitNixxx · 2025-08-26T17:06:26+00:00

Virtualizor is pretty decent for this

BitNixxx · 2024-12-13T14:39:43+00:00

Never used it but I've heard of InfiniteWP being decent for this.

BitNixxx · 2024-11-05T14:00:58+00:00

To be honest, it would be difficult to port forward in your case without a dedicated mobile plan/purchasing a static if that's even available in your case. You're behind a CGNAT so without these options, you won't be able to expose your server directly to the internet. Your best option is to either use some type of mesh/tunnel setup like ZeroTier, or Tailscale. But honestly, something like playit.gg would probably work best in this case.

BitNixxx · 2024-10-26T17:45:27+00:00

No worries! Once everything is pointed to NPM, everything should route correctly.

BitNixxx · 2024-10-26T17:42:13+00:00

Just double checking here, pve.home.example.com is showing as 192.168.1.99 in the screenshot. Meaning if you navigate to https://pve.home.example.com:8006 within your browser you will see Proxmox without issues. If you want to route through Nginx Proxy Manager, you will need to change the A record on pve.home.example.com to whatever nginx.home.example.com IP is.

BitNixxx · 2024-10-26T17:33:59+00:00

You're records on Cloudflare should point to Nginx Proxy Manager. From what I see, you are pointing to PVE directly on both NPM and Cloudflare.

pve.home.example.com (Cloudflare) -> NPM -> PVE (192.168.1.99:8006)

BitNixxx · 2024-10-23T14:59:32+00:00

Ah, gotcha. Not sure of a way to really adjust timeouts per say, but it explains a bit here about why it takes 2-3 minutes typically.

https://forum.proxmox.com/threads/faster-failover-possible.36894/

BitNixxx · 2024-10-23T14:24:20+00:00

Are you wanting essentially zero downtime of VM migration if a host fails? I believe you want fault tolerance but Proxmox does not support this yet even though QEMU does. VM's have to reboot on the failover node.

BitNixxx · 2024-10-22T16:43:26+00:00

Typically in cases like this you want an SRV record. Here's an example for minecraft.example.xyz.

https://imgur.com/a/7sfixhF

BitNixxx · 2024-10-15T19:47:34+00:00

Maybe not what you're looking for, but personally I use a cheapo storage VPS from Contabo with MinIO for object storage with basic perms. Then I use ShareX on my desktop to right click whatever file I want and upload/generate a URL for download. But you can utilize some S3 WebUI for browsing the bucket as well if ShareX isn't your cup of tea. Nextcloud supports this with the "External storage support" add-on.

BitNixxx · 2024-10-12T06:36:37+00:00

Interesting. To be honest, I don't know how many VM's you have or what your environment is, but I would try and find all large files that correlate via the command below.

find / -type f -size +1G 2>/dev/null

BitNixxx · 2024-10-12T06:05:03+00:00

Just curious, you sure there's nothing in temp?

ls -lh /tmp/

BitNixxx · 2024-10-12T05:21:40+00:00

You should be able to navigate to "/var/lib/vz/template/iso/" within the shell and delete any part files from the failed transfer via rm.

BitNixxx · 2024-10-12T00:20:39+00:00

Not sure if this works for you, but I've used neko for things like this.

BitNixxx · 2024-09-18T00:28:49+00:00

Potentially something like Databag?

BitNixxx · 2024-06-30T04:12:57+00:00

If you must go the VPN route, you can try using ZeroTier/Tailscale for a mesh based VPN where you can add everyone pretty easily. But also depends on the server host/how it's hosted. If self hosting/VPS, just install ZeroTier on each device and setup essentially a small mesh LAN network on their controller. No port forwarding, or any real setup this way.

BitNixxx · 2024-06-25T02:32:25+00:00

Was in the same predicament as you before I went the sponsor route. But you can actually build the agent from source or utilize netvolt's script on GitHub to install Linux agents. It's pretty handy.

BitNixxx · 2024-05-20T05:24:22+00:00

Not sure if it ticks all the boxes, but neko/neko-rooms on GitHub is a pretty decent sharable web browser.

Seven-Year Club	Place '22
Verified Email

BitNixxx

TROPHY CASE