As the subject states, as I've become more familiar with Linix over the last few months, I started with simple Apache servers, then included SSL through Let's Encrypt for a single server, then found myself running multiple servers in this config. I then began incorporating Nginx along with SSL which brings me to now.
I'd like to setup a single Nginx VM to serve as proxy and manage all of the SSL certs for all web servers (currently running 7). They're all low traffic for internal team or a few clients and I'm likely to introduce other servers in the future as I find more and more things I want to test/try.
Are there any gotchas when setting up this way? Are there well known applications that will require SSL certs on both the proxy and the web server? Should I protect the connection between Nginx and all web servers anyway? They're all running on the same Hyper-V host so there's no concern for traffic going between Hyper-V hosts or to other services. Assuming it'll be easier to manage individual vhost files instead of one large one since each can be setup for one web server.
Really just looking for best practices here and/or any hints you might have that might simplify my life.