v3ritas

@v3ritas@infosec.pub

This is a remote user, information on this page may be incomplete. View at Source ↗

v3ritas.tech

SeanMcAdam.online

Keybase

⁨Comment⁩ on ⁨How to reverse proxy?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Thanks! I’ll take a look at that.
⁨Comment⁩ on ⁨How to reverse proxy?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
nginx + certbot \ acme for certs from my local Step-CA, proper DNS & I just use a WireGuard VPN on-demand for when I leave my house. As soon as I’m off my Wi-Fi I have the VPN active so I don’t need to expose anything more than 1 port for that to work =]

I might look at Tailscale, if only because I’ve seen plenty of people say that’s how they connect, so worth looking into =]
⁨Comment⁩ on ⁨How to reverse proxy?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
It looks like jhdeval mentioned this already, but you may need to review your config file. By default, you would likely have nginx listening on ports 80 & 443 for requests to a specific address (i.e.: jellyfin.domain.com) which would be configured in your DNS, & then nginx would direct the jellfin 443 traffic to port 85 to access Jellyfin. Same principle for Bitwarden. If you have your nginx config files, i \ we could take a look & see if we spot any issues.
⁨Comment⁩ on ⁨How to reverse proxy?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I prefer doing nginx on the host (vs a container), & have different configs for each service. You can have multiple services on the same port, it can be controlled via DNS instead (i.e.: access Jellyfin.domain.com & bitwarden.domain.com, both of 443).

Ive tried Caddy once or twice but couldn’t get it working, so i just stick with nginx & cert or to automatically get certificates from my internal CA
⁨Comment⁩ on ⁨What are your Homelab goals for 2025?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Is there a reason(s) you’re doing NixOS over something like ProxMox? A friend of mine has been moving his lab over to ProxMox containers so i was thinking to do the same thing, but curious about NixOS since I’ve seen a few people mention it. Thanks!