Comment on tailscale friendly app dashboard
coffeeboba@lemmy.world 1 week ago
I use a reverse proxy (caddy), and point a domain at my machine.ts-domain.ts.net which hosts caddy
this way I can go to service.my.domain as long as I’m connected to tailscale. any devices not on my tailscale network just get bounced if they hit the domain
themadcodger@kbin.earth 1 week ago
You have a CNAME record that points service.my.domain to machine-that-hosts-caddy.ts-domain.ts.net, and with tailscale enable it hits the caddy server and then reverse proxies it to the machine:port of "service"? Which may or may not be the tailscale IP address and port?
coffeeboba@lemmy.world 1 week ago
Basically yeah.
CNAME points my.domain to *.machine-that-hosts-caddy.my-ts-domain.ts.net caddy running on that machine directs subdomains to machine:port pairs, where “machine” is either the tailscale name or IP for the machine hosting the service
themadcodger@kbin.earth 1 week ago
Thanks!