Apparently force-ssl and an NGINX proxy are either redundant or if used together can cause too many redirects. This was not well-documented in the materials I was able to locate.
Step 1. Remove force-ssl from your meteor project.
Step 2. Create .conf file for domains
Step 3. Set proper cypher
ssl_prefer_server_ciphers on; ssl_session_cache shared:SSL:10m;
Step 4. Set proper forward from port 80 to port 443
Step 5. Upload certs and copy to proper location as specified in .conf
For the next site.