diff --git a/grocy.subdomain.conf.sample b/grocy.subdomain.conf.sample
new file mode 100644
index 0000000..7697dc2
--- /dev/null
+++ b/grocy.subdomain.conf.sample
@@ -0,0 +1,31 @@
+# make sure that your dns has a cname set for grocy
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name grocy.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth, fill in ldap details in ldap.conf
+    #include /config/nginx/ldap.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable the next two lines for ldap auth
+        #auth_request /auth;
+        #error_page 401 =200 /login;
+
+        include /config/nginx/proxy.conf;
+        resolver 127.0.0.11 valid=30s;
+        set $upstream_grocy grocy;
+        proxy_pass http://$upstream_grocy:80;
+    }
+
+}
diff --git a/grocy.subfolder.conf.sample b/grocy.subfolder.conf.sample
new file mode 100644
index 0000000..b39d186
--- /dev/null
+++ b/grocy.subfolder.conf.sample
@@ -0,0 +1,18 @@
+# grocy requires a base url setting
+
+location /grocy {
+    rewrite ^/grocy(/.*)$ $1 break;
+    # enable the next two lines for http auth
+    #auth_basic "Restricted";
+    #auth_basic_user_file /config/nginx/.htpasswd;
+
+    # enable the next two lines for ldap auth, also customize and enable ldap.conf in the default conf
+    #auth_request /auth;
+    #error_page 401 =200 /login;
+
+    include /config/nginx/proxy.conf;
+    resolver 127.0.0.11 valid=30s;
+    set $upstream_grocy grocy;
+    proxy_pass http://$upstream_grocy:80;
+}
+