diff --git a/templates/GitLab/0/docker-compose.yml b/templates/GitLab/0/docker-compose.yml
index 663d260..1df231f 100644
--- a/templates/GitLab/0/docker-compose.yml
+++ b/templates/GitLab/0/docker-compose.yml
@@ -10,6 +10,11 @@ services:
       GITLAB_OMNIBUS_CONFIG: |
         external_url 'https://${TRAEFIK_HOST}'
         gitlab_rails['gitlab_shell_ssh_port'] = 1022
+        nginx['real_ip_trusted_addresses'] = [ '10.42.0.0/16' ] # 10.42.0.0/16 is the default Rancher managed subnet
+        # nginx['real_ip_header'] = 'X-Real-IP'
+        # nginx['real_ip_recursive'] = 'on'
+        nginx['listen_port'] = 80 # Using HTTP between the Traefik container and GitLab
+        nginx['listen_https'] = false # Traefik is handling HTTPS on outside
     hostname: ${TRAEFIK_HOST}
     labels:
       io.rancher.container.pull_image: always
@@ -24,12 +29,14 @@ services:
       traefik.web.frontend.headers.SSLRedirect: true
       traefik.web.frontend.headers.STSPreload: true
       traefik.web.frontend.headers.STSSeconds: 15552000
+      traefik.web.frontend.passHostHeader: true
       traefik.web.frontend.rule: Host:${TRAEFIK_HOST}
       traefik.web.port: "80"
       ### End Web Segment
       ### Start SSH Segment
       traefik.ssh.frontend.entryPoints: ssh
       traefik.ssh.frontend.rule: Host:${TRAEFIK_HOST}
+      traefik.ssh.frontend.passHostHeader: true
       traefik.ssh.port: "22"
       ### End SSH Segment
     ports: