May I suggest we investigate one problem, solve it (hopefully
) then we will look at the next one...
starting with the first step that is to make Nginx working:
- you have installed Nginx listening on external interface, say port 999
- if your internal web server has exactly same structure than what you want to "expose" on internet, rewriting is not mandatory because the left part is handled by reverse proxy itself.
- simple redirect should do.
You need to authorize, at FW level, incoming flow on port 999 on external interface.
Do not bother with your firewall rule redirecting port 80 to 999.
You can just access, for testing purpose
http://your.external.service:999/Once all this stuff work, we can improve and fine tune.