• 0 Posts
  • 141 Comments
Joined 1 year ago
cake
Cake day: February 17th, 2024

help-circle
  • You don’t need public DNS. You can use whatever domain you want if you use your own DNS server (though you should use one you own, or something under the .internal TLD).

    Likewise, you can issue whatever certs you want if you trust the CA.

    But LE does support wildcard certs. You can get them with certbot or other tools.

    Personally I use traefik, which has LE support built in. It automatically gets an individual cert for each service. If you use caddy, I’m sure it has something similar.







  • Stop exposing services like these to the Internet. If you need remote access, use a VPN.

    You don’t need to own a domain either. Use a free dynamic DNS provider.

    And if you don’t need remote access, don’t bother with that at all. Just run a local DNS server with records for these services with anything under the .internal TLD. Or even just IP address.

    HTTPS can come later. It’s really not important for traffic that’s not sensitive, like no passwords or whatever.