Node-RED, Apache,Proxypass - no debug data


Hey All,

Issue: debug node dosn't work - no debug data

I have got an issue after securing Node-RED by Apache web server with ProxyPass and uiHost:,

  1. What I have:

When I run Node-RED in browser locally: localhost:1880 then evrything works.
Into flows, debug nodes works (debug data are retrived in debug panel), mqtt and mysql shows that they are connected.
But when I run Node-RED in browser on WAN site e.g
I could login to Node-RED, I see running flows - database accepts data from mqtt.
The problem is - debug node dosn't work (nothing shows in debug panel), mqtt node dosn't show that there is connected,also mysql node dosn't show that there is connected.

Did I omit something in the configuration?

Best regards.


the websocket connection back to the editor (debug) also needs to be allowed through your proxy.


@dceejay - I thank You
I have done some research on the web, and found out some informations about RewriteCon for websocket. I have implemented that solution and now, my Node-RED debug node works in proxy.

Best regards


@bronto any chance you could post a sanatized version of your Apache config? It would be useful as a reference.


OK - I could, no problem.

  1. There's a popout on that forum which tells us about security of Node-red.

Shortly - OS Ubuntu, Node-Red runs by tux user.
Tux home directory: /home/tux/.node-red/settings.js.
Three important parameters

uiPort:process.env.PORT || 3005,

And now

  1. Apache virtual host setup (SSL by letsencrypt)
ServerName ServerAdmin DocumentRoot /var/www/html/
RewriteEngine On
RewriteCond %{HTTP:Upgrade}   =websocket    [NC]
    RewriteRule /nodered(.*)              ws://localhost:3005/nodered$1 [P,L]

ProxyPreserveHost On
ProxyRequests Off
ProxyVia Off

<Proxy *>
    Order deny,allow
    Require all granted

ProxyPass 		/nodered		http://localhost:3005/nodered
ProxyPassReverse	/nodered		http://localhost:3005/nodered

CustomLog ${APACHE_LOG_DIR}/ combined

SSLCertificateFile       /etc/letsencrypt/live/
SSLCertificateKeyFile /etc/letsencrypt/live/
Include /etc/letsencrypt/options-ssl-apache.conf

Above configuration works for me.

Best regards


Awesome, thanks @bronto !

I currently have my http end points all proxied via Apache, but it would be nice to proxy the admin interface as well!