diff --git a/default.conf b/default.conf
index 6f57943..0df7cc0 100644
--- a/default.conf
+++ b/default.conf
@@ -2,22 +2,12 @@ server {
     listen 80;
     server_name diyaa.de www.diyaa.de;
 
-    location /.well-known/acme-challenge/ {
-        root /var/www/certbot;
+    location ^~ /.well-known/acme-challenge/ {
+        alias /var/www/certbot/.well-known/acme-challenge/;
+        default_type "text/plain";
+        try_files $uri =404;
     }
 
-    location / {
-        return 301 https://$host$request_uri;
-    }
-}
-
-server {
-    listen 443 ssl;
-    server_name diyaa.de www.diyaa.de;
-
-    ssl_certificate /etc/letsencrypt/live/diyaa.de/fullchain.pem;
-    ssl_certificate_key /etc/letsencrypt/live/diyaa.de/privkey.pem;
-
     location / {
         proxy_pass http://web:3000;
         proxy_http_version 1.1;
@@ -25,7 +15,7 @@ server {
         proxy_set_header Host $host;
         proxy_set_header X-Real-IP $remote_addr;
         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-        proxy_set_header X-Forwarded-Proto https;
+        proxy_set_header X-Forwarded-Proto $scheme;
 
         proxy_set_header Upgrade $http_upgrade;
         proxy_set_header Connection "upgrade";