From 02b69d72b92893d54d9801971e30eced61a7f855 Mon Sep 17 00:00:00 2001
From: nicholasmanios <nicholas@manios.ca>
Date: Wed, 18 Mar 2020 19:11:40 -0400
Subject: [PATCH] Added README.md

---
 aries/anginx/README.md | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 aries/anginx/README.md

diff --git a/aries/anginx/README.md b/aries/anginx/README.md
new file mode 100644
index 0000000..97d4ae8
--- /dev/null
+++ b/aries/anginx/README.md
@@ -0,0 +1,11 @@
+# nginx reverse proxy
+One of the neat features of aries is that there is an HTTP/HTTPS reverse proxy that I use to securely expose some of my services to the internet.
+
+### HTTP -> HTTPS redirect
+HTTPS is forced
+
+### Let's Encrypt TLS Termination
+Since this nginx is exposed to the internet, I have setup a script that will generate a publicly trusted Let's Encrypt certificate for HTTPS sessions. On my LAN, my HTTPS services all use certificates generated from my internal certificate authority, so they would never be publicly trusted.
+
+### Domain names only
+No connections by IP only are allowed, everyone must have a hostname when conencting.
\ No newline at end of file