Selfhosted

59973 readers

451 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
No spam.
Posts here are to be centered around self-hosting. Please ensure it is clear in your post how it relates to self-hosting.
Don't duplicate the full text of your blog or git here. Just post the link for folks to click.
Submission headline should match the article title.
No trolling.

Resources:

selfh.st Newsletter and index of selfhosted software and apps
awesome-selfhosted software
awesome-sysadmin resources
Self-Hosted Podcast from Jupiter Broadcasting

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago

MODERATORS

curbstickle@anarchist.nexus

curbstickle_lw@lemmy.world

Internal domain and reverse proxy (lemmy.zip)

submitted 7 months ago by jobbies@lemmy.zip to c/selfhosted@lemmy.world

29 comments fedilink hide all child comments

I'm going round in circles on this one.

What I want to do is:

serve up my self-hosted apps with https (to local clients only - nothing over the open web)
address them as 'app.server.lan' or 'sever.lan/app'
preferably host whatever is needed in docker

I think this is achievable with a reverse proxy, some kind of DNS server and self-signed certs. I'm not a complete noob but my knowledge in this area is lacking. I've done a fair bit of research but I'm probably not using the right terminology or whatever.

Would anyone have a link to a good guide that covers this?

you are viewing a single comment's thread
view the rest of the comments

[–] motruck@lemmy.zip 2 points 7 months ago (1 children)

What advantages do you think the paid cert has over letsencrypt?

[–] philpo@feddit.org 2 points 7 months ago

ZeroSSL has unpaid plans (for non wildcards) that have a few advantages that LE doesn't:

No Ratelimits,
A WebDashboard
More ways to validate
They have a RestAPI

And, first and foremost, they are European and it's always good tk have an alternative ready.

But as said before, I totally missed the wildcard issue, as I haven't touched these for a long time and recently had more to do with my public services (which get a ACME single domain cert via zeroSSL)