From 246d40e6f93b3e42165798c0df3a75bd7e6c7fc4 Mon Sep 17 00:00:00 2001
From: Duke Leto <duke@leto.net>
Date: Sun, 28 Nov 2021 00:00:36 -0500
Subject: [PATCH] Document nginx special sauce

---
 README.md | 33 +++++++++++++++++++++++++++++++++
 1 file changed, 33 insertions(+)

diff --git a/README.md b/README.md
index c21f4b6..760bbda 100644
--- a/README.md
+++ b/README.md
@@ -37,10 +37,43 @@ It will run in the background. You can see the process via:
 
 Note: The default port of the Wormhole is 7070. This can be changed in source and recompiled if needed.
 
+# Nginx Proxying
+
+You will want something to proxy SSL connections in front of the wormhole, it doesn't handle that itself.
+For example, the production `wormhole.hush.is` uses CloudFlare to proxy SSL connections, which then talks
+to nginx, which then proxies to the actual wormhole server. Like so:
+
+```
+    [browser] <=> [CloudFlare] <=> [nginx] <=> [wormhole]
+```
+
+Here is an example nginx config that you can use, just change your `server_name` :
+
+```
+server {
+        root /var/www/wormhole.hush.is;
+        index index.html index.htm;
+
+        server_name wormhole.hush.is;
+
+        location / {
+                proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+                proxy_set_header Host $host;
+
+                proxy_http_version 1.1;
+                proxy_set_header Upgrade $http_upgrade;
+                proxy_set_header Connection "upgrade";
+                proxy_pass http://localhost:7070;
+        }
+}
+```
+
 # It's Not Working?
 
 The wormhole does not print anything to STDOUT, all logging is in application.log
 
+Getting "Peer is not connected" ? Restart SilentDragon/SilentDragonLite and pair SDA again.
+
 # License
 
 GPLv3