How to install discourse forum along with multiple sites via varnish & hitch proxy

General
1

I’m using virtualmin with apache for my other sites.

apache listening one port 8080 varnish port 80 hitch port 443 discourse port 8081

With below default.vcl file, there isn’t any problem with my other apache sites. Although discourse site opens, but with lot of problems.

  • logo not appearing, attachments not working.

I tried to turn on force https option in admin panel of discourse, but with this, no user can login to site.

My varnish config:

vcl 4.1;
import std;
# Default backend definition. Set this to point to your content server.
backend default {
    .host = "192.168.1.103";
    .port = "8080";
}
backend discourse {
    .host = "192.168.1.103";
    .port = "8081";
}

sub vcl_recv {
    if (req.http.host == "discourse.example.com") {
        set req.backend_hint = discourse;
        return (pipe);
    } else {
        set req.backend_hint = default;

    }

    if (std.port(server.ip) != 443) {
set req.http.location = "https://" + req.http.host + req.url;
return(synth(301));
}

    if (!req.http.X-Forwarded-Proto) {
        if(std.port(server.ip) == 443) {
            set req.http.X-Forwarded-Proto = "https";
        } else {
            set req.http.X-Forwarded-Proto = "https";
        }
    }
}

sub vcl_backend_response {
    # Happens after we have read the response headers from the backend.
    #
    # Here you clean the response headers, removing silly Set-Cookie headers
    # and other mistakes your backend does.
}

sub vcl_synth {

    if (resp.status == 301 || resp.status == 302) {
        set resp.http.location = req.http.location;
        return (deliver);
    }
}

sub vcl_deliver {
    # Happens when we have all the pieces we need, and are about to send the
    # response to the client.
    #
    # You can do accounting or modifying the final object here.
}

My changes in discourse app.yml:

expose: 
- "8081:80" # http
# - "443:443" # https

## Uncomment these two lines if you wish to add Lets Encrypt (https)
# - "templates/web.ssl.template.yml"
# - "templates/web.letsencrypt.ssl.template.yml"
## If you added the Lets Encrypt template, uncomment below to get a free SSL certificate
# LETSENCRYPT_ACCOUNT_EMAIL: me@example.com

My hitch config changes:

pem-file = "/home/discourse/ssl.everything"

Help me in resolving this issue.