[UFW + Apache Reverse Proxy] UFW blocks some packages

Boia11 · November 20, 2020, 1:26pm

I have an HTTP(s) server with Apache and I have a Raspeberry Pi4 2GB with HassOS 4.17.
On my HTTP(s) server (debian based) I use UFW and I configure Apache for reverse proxy from my subdoman but inside syslog UFW block incoming packages from HassOS (192.168.1.25) and my server (192.168.1.6).
My configuration:

UFW

Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip

To                         Action      From
--                         ------      ----
80/tcp                     ALLOW IN    Anywhere
443/tcp                    ALLOW IN    Anywhere
22/tcp                     ALLOW IN    192.168.1.0/24
8883/tcp                   ALLOW IN    Anywhere
Anywhere                   ALLOW IN    192.168.1.25
80/tcp (v6)                ALLOW IN    Anywhere (v6)
443/tcp (v6)               ALLOW IN    Anywhere (v6)
8883/tcp (v6)              ALLOW IN    Anywhere (v6)

UFW Logs:

[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47052 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47052 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47052 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47204 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47204 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47204 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47204 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47204 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47204 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47472 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47472 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47472 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47472 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47678 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47678 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47678 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47678 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47604 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47678 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47678 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47604 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47774 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47774 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47774 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47774 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47774 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47830 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47774 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47774 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47830 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47920 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47920 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47920 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47914 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47914 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47914 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47914 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48060 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48060 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48060 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48060 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48060 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48256 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48256 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48256 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48194 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47010 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47010 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47010 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48256 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47010 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47010 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47010 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48256 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48474 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48474 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48474 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48474 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48474 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48474 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47014 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47014 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48748 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47014 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47014 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48748 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=47014 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=46690 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=46690 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=46690 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=46690 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48324 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=46688 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=38576 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48968 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48968 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48968 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48968 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48932 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48932 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48932 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48932 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=48932 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=49228 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=49228 WINDOW=0 RES=0x00 RST URGP=0 
[UFW BLOCK] IN=eth0 OUT= MAC=5e:6f:fe:92:16:4d:dc:a6:32:34:12:48:08:00 SRC=192.168.1.25 DST=192.168.1.6 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=8123 DPT=49228 WINDOW=0 RES=0x00 RST URGP=0

Apache Reverse Proxy config:

<VirtualHost *:80>

        ServerName hassos.mydomain.tk

	ServerSignature Off

	RewriteEngine On

    	RewriteCond %{HTTPS} !=on
	RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [NE,R,L]

	ErrorLog ${APACHE_LOG_DIR}/IoT/error.log
	CustomLog ${APACHE_LOG_DIR}/IoT/access.log combined
</VirtualHost>

<IfModule mod_ssl.c>
<VirtualHost *:443>
	
	ServerName hassos.mydomain.tk
	
	ProxyPreserveHost On
	ProxyRequests Off

	ProxyPass               /api/websocket		ws://192.168.1.25:8123/api/websocket
	ProxyPassReverse        /api/websocket		ws://192.168.1.25:8123/api/websocket
	ProxyPass               /			http://192.168.1.25:8123/
	ProxyPassReverse        /			http://192.168.1.25:8123/

	RewriteEngine on

	RewriteCond %{HTTP:Upgrade} =websocket [NC]
	RewriteRule /(.*)  ws://192.168.1.25:8123/$1 [P,L]
	RewriteCond %{HTTP:Upgrade} !=websocket [NC]
	RewriteRule /(.*)  http://192.168.1.25:8123/$1 [P,L]

	<IfModule mod_headers.c>
		Header always set Strict-Transport-Security "max-age=15552000; includeSubDomains"
	</IfModule>

	SSLEngine on

	SSLCertificateFile /etc/letsencrypt/live/hassos.mydomain.tk/fullchain.pem
	SSLCertificateKeyFile /etc/letsencrypt/live/hassos.mydomain.tk/privkey.pem

	ErrorLog ${APACHE_LOG_DIR}/IoT/error.log
	CustomLog ${APACHE_LOG_DIR}/IoT/access.log combined
</VirtualHost>
</IfModule>