this post was submitted on 25 Oct 2025
60 points (96.9% liked)

Selfhosted

59973 readers
451 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam.

  3. Posts here are to be centered around self-hosting. Please ensure it is clear in your post how it relates to self-hosting.

  4. Don't duplicate the full text of your blog or git here. Just post the link for folks to click.

  5. Submission headline should match the article title.

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
ayyy@sh.itjust.works
curbstickle@anarchist.nexus
curbstickle_lw@lemmy.world
60
Internal domain and reverse proxy (lemmy.zip)
submitted 7 months ago by jobbies@lemmy.zip to c/selfhosted@lemmy.world
29 comments fedilink hide all child comments
 

I'm going round in circles on this one.

What I want to do is:

  • serve up my self-hosted apps with https (to local clients only - nothing over the open web)
  • address them as 'app.server.lan' or 'sever.lan/app'
  • preferably host whatever is needed in docker

I think this is achievable with a reverse proxy, some kind of DNS server and self-signed certs. I'm not a complete noob but my knowledge in this area is lacking. I've done a fair bit of research but I'm probably not using the right terminology or whatever.

Would anyone have a link to a good guide that covers this?

you are viewing a single comment's thread
view the rest of the comments
[–] solrize@lemmy.ml 1 points 7 months ago

I don't know of an all-in-one-place guide but there's not a whole lot to it. Just look up how to do each of the parts you mentioned. I'd say that buying a domain and using LetsEncrypt is not really in the self-hosting spirit (i.e. you should run your own DNS and CA) but it's up to you. Running a serious CA with real security is quite hard, but for your purposes you can just do whatever. There are various programs or scripts for it. I still use CA.pl from the openssl distro, but that's very old school and people here hate it. Anyway, you will do a little head scratching to get everything working right, but it will be educational, so you'll get something out of it in its own right.