diff options
| author | Hugo Osvaldo Barrera <hugo@barrera.io> | 2014-11-03 11:25:31 -0300 |
|---|---|---|
| committer | Hugo Osvaldo Barrera <hugo@barrera.io> | 2014-11-03 11:25:31 -0300 |
| commit | e3098b69e7a4bc8b08bd85093204305991d8370d (patch) | |
| tree | f96ad66368932a0105df39386b474cff43fd8024 /lib | |
| parent | d7c50b4a95b5530ae0e2f5249cfd9a419dd940c6 (diff) | |
| download | gitlab-ce-e3098b69e7a4bc8b08bd85093204305991d8370d.tar.gz | |
Don't enable IPv4 *only* on nginx.
The current configuration sample files only enable IPv4 by default, making the
server inaccesible for many remote hosts (and an increasing amount every day).
Enable IPv4 and IPv6 by default. Older servers with no external IPv6
connectivity will not fail since they'll have a local-link IPv6 address to bind
to anyway.
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/support/nginx/gitlab | 3 | ||||
| -rw-r--r-- | lib/support/nginx/gitlab-ssl | 6 |
2 files changed, 6 insertions, 3 deletions
diff --git a/lib/support/nginx/gitlab b/lib/support/nginx/gitlab index 49a68c62293..6369c1e02ff 100644 --- a/lib/support/nginx/gitlab +++ b/lib/support/nginx/gitlab @@ -33,7 +33,8 @@ upstream gitlab { ## Normal HTTP host server { - listen *:80 default_server; + listen 0.0.0.0:80 default_server; + listen [::]:80 default_server; server_name YOUR_SERVER_FQDN; ## Replace this with something like gitlab.example.com server_tokens off; ## Don't show the nginx version number, a security best practice root /home/git/gitlab/public; diff --git a/lib/support/nginx/gitlab-ssl b/lib/support/nginx/gitlab-ssl index cbb198086b5..e992ebaf656 100644 --- a/lib/support/nginx/gitlab-ssl +++ b/lib/support/nginx/gitlab-ssl @@ -39,7 +39,8 @@ upstream gitlab { ## Normal HTTP host server { - listen *:80 default_server; + listen 0.0.0.0:80; + listen [::]:80 default_server; server_name YOUR_SERVER_FQDN; ## Replace this with something like gitlab.example.com server_tokens off; ## Don't show the nginx version number, a security best practice @@ -50,7 +51,8 @@ server { ## HTTPS host server { - listen 443 ssl; + listen 0.0.0.0:443 ssl; + listen [::]:443 ssl default_server; server_name YOUR_SERVER_FQDN; ## Replace this with something like gitlab.example.com server_tokens off; root /home/git/gitlab/public; |