I need help figuring out where I am going wrong or being an idiot, if people could point out where…

I have a server running Debian 12 and various docker images (Jellyfin, Home Assistant, etc…) controlled by portainer.

A consumer router assigns static Ip addresses by MAC address. The router lets me define the IP address of a primary/secondary DNS. The router registers itself with DynDNS.

I want to make this remotely accessible.

From what I have read I need to setup a reverse proxy, I have tried to follow various guides to give my server a cert for the reverse proxy but it always fails.

I figure the server needs the dyndns address to point at it but I the scripts pick up the internal IP.

How are people solving this?

  • @traches@sh.itjust.works
    link
    fedilink
    English
    12
    edit-2
    7 months ago

    My advice is to just use Tailscale. It’s a 5 minute setup and you get access to your stuff from anywhere, securely, without opening ports to the public internet. It will give your server a second IP address, which you will be able to access from any other device which is also registered to your Tailscale account.

    My personal setup:

    • Tailscale installed on all devices that need access to my home lab
    • Custom domain with root A record set to server’s Tailscale IP
    • caddyserver reverse proxy on server, with DNS https authentication configured (regular http with won’t work because it’s not on the public internet)
    • services all on subdomains
    • impure9435
      link
      fedilink
      27 months ago

      Btw you can self host an open source Tailscale server called Headscale. And there’s NetBird which is a fully open source alternative to Tailscale.