Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Advice on nginx public endpoint

Hello,  and thanks ,

Looking for advice on creating a public endpoint with bitbucket / nginx as not an expert on latter.

We have  Bitbucket on SSL serving proxy for on-premise. on the same server

We need to perform a migration to cloud  Atlassian Bitbucket, therefore needing a public endpoint.

Our network team tried to create NAT access to the server on  443  like but we always got a timeout. The reason given, the  Firewall we connect already using  443.  Therefore the suggestion was to use port 80.  which is fine however when they  NAT  port  80  all we get it the "Nginx Welcome" page.

Is there a way we may alter the  Nginx.conf below to get to the bitbucket server from outside NAT  given to us by network team ,   without disrupting the current inhouse users from accessing  internally on-prem with  ?


The nginx.conf  (obfuscated)

user www-data;
worker_processes auto;
pid /run/;
include /etc/nginx/modules-enabled/*.conf;

events {
worker_connections 768;
# multi_accept on;

http {

# Basic Settings

client_max_body_size 0;
proxy_max_temp_file_size 0;

sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
# server_tokens off;

# server_names_hash_bucket_size 64;
# server_name_in_redirect off;

include /etc/nginx/mime.types;
default_type application/octet-stream;

# SSL Settings

ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
ssl_prefer_server_ciphers on;

# Virtual Host Configs

include /etc/nginx/conf.d/*.conf;
include /etc/nginx/sites-enabled/*;

server {
listen 80;
listen 443 ssl;
#ssl on;
ssl_certificate /etc/nginx/ssl/bitbucket_thomkinsltd_org.crt;
ssl_certificate_key /etc/nginx/ssl/bitbucket_thomkinsltd_org.key;
ssl_session_timeout 5m;
ssl_protocols ;
ssl_ciphers ;
ssl_prefer_server_ciphers on;

# Optional optimisation - please refer to
# ssl_session_cache shared:SSL:10m;
location / {
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Real-IP $remote_addr;
proxy_redirect off;



0 answers

Suggest an answer

Log in or Sign up to answer
Community showcase
Published in Bitbucket

New improvements to user management in Bitbucket Cloud 👥

Hey Community! We’re willing to wager that quite a few of you not only use Bitbucket, but administer it too. Our team is excited to share that we’ll be releasing improvements throughout this month of...

3,709 views 10 16
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you