Comment on issues setting up nginx as an https proxy

<- View Parent
N0x0n@lemmy.ml ⁨1⁩ ⁨week⁩ ago

Subpaths are things of the past (kinda) ! SSL wildcards are going to be a life saver in your homelab !

I have a self-signed rootCA + intermediateCA which are signing all my certificates for my services. But wait… It can get easier just put a wildcard domain for your homelab (*.home.lab) and access all your services in your lan with a DNS provider (pihole will be your friend!).

Here is an very simplified example:

  1. Create a rootCA (certificate authority) and put that on every device (Pc, laptop, android, iphone, tv, box…)

  2. Sign a server certificate with that rootCA for the following wildcard domaine: *.home.lab and put that behind a reverse proxy.

  3. Add pihole as DNS resolver for your local domain name (*.home.lab) or if you like you can manually add the routes on all devices… But that"s also a thing of the past !

  4. Let your proxy handle your services

Access all your services with the following url in your lan


This works flawlessly without the need to pay for any domain name, everything is local and managed by yourself. However, it’s not that easy as stated above… OpenSSL and TLS certificates are a beast to tame and lots of reading ^^ so does Ngnix or any other reverse proxy !

But as soon as you get the hang of it… You can add a new services in seconds :) (specially with docker containers !)

source
Sort:hotnewtop