I spend quite some time to figure out how nginx needs to be configured to run a https vhost on port 443 and do a proper reverse proxying to my docker instance bound to localport:32400. Proxy_pass sends the data to http://localhost:32400.
When the container is bound to localhost:32400, even the claim process is not working (which makes sense if the reverse proxy settings are wrong and no network connection can be established).
If I add a Custom Access Url, the containerized Plex intance is not reachable anymore (which makes sense because the server is not claimed?)
Do I need to add the ssl-certificate to Plex? Actualy, I didn't 
Do I need to enforce secure connections, even though ssl terminates at the reverse proxy?
When do i need to add the Custom Access URL?
I want secure connections only on the instance.
Every input is welcome!