this post was submitted on 26 Nov 2025
28 points (93.8% liked)

Selfhosted

53179 readers
730 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
28
Need some help with remote access please. (lemmy.dbzer0.com)
submitted 1 day ago by Tippon@lemmy.dbzer0.com to c/selfhosted@lemmy.world
23 comments fedilink hide all child comments
 

Hi all :)

I've got a media server set up running Navidrome, Calibre-Web, and Immich along with some other services, and want to get access to them from outside the house now. I've read that Caddy is good for securing things by making it easier to set up encryption, but I'm not sure I understand that side of things.

I've set up a Cloudflare tunnel for a Minecraft server, and I've got Tailscale installed but not set up with an exit server yet, but understand that Caddy would be better. I ideally want to set up apps on my wife's phone so that she can access the libraries too.

Is it just a case of installing Caddy and setting up the services I want to share through it? That seems too easy, like I've missed something.

If it makes any difference, I've got a standard UK ISP router with a few ports forwarded, and I'm going to add an access point and then a LevelOne GEP-5070 managed switch to learn about things like VLANs. The link to the switch is here:

https://mayflex.com/shop/product/GEP-5070

I feel like I'm missing something, but can't think what, so I'd be grateful for any help :)

you are viewing a single comment's thread
view the rest of the comments
[–] irmadlad@lemmy.world 1 points 1 day ago (1 children)

You've got Cloudflare tunnels/Zero Trust and Tailscale. You've got it wrapped up. Honest Question: What makes you think Caddy would be better? I think adding Caddy would be adding more complexity to a system that is already got everything it needs to operate correctly. I'm not even sure what Caddy would bring to the table in this scenario.

[–] Tippon@lemmy.dbzer0.com 2 points 23 hours ago (1 children)

I just replied to your other comment before I saw this one, but I'll post the reply here too for anyone who's following the thread :)

The main thing I'm still not sure of is Tailscale. I don't know if I can just put my services behind an URL for my wife to add to her devices, as she's unlikely to remember to run Tailscale before she listens to her music, for example.

Sorry, I've just replied to another comment before I saw yours. I didn't realise that Cloudflare could deal with encryption on its own, I thought you needed something like Caddy to get certificates. I found out after seeing the other comment that one of my services running through the Cloudflare tunnel is encrypted, but I couldn't get it to work in the past. I'm not sure what's changed, but I'm going to give it a proper look once I've had some sleep.

There's something about the networking side of things that just throws me, and I struggle to get my head around it. If I can get things running through Cloudflare, I'll be very happy :)

[–] irmadlad@lemmy.world 2 points 21 hours ago* (last edited 11 hours ago) (1 children)

I do appologize for not getting back sooner.

through the Cloudflare tunnel is encrypted,

Yes indeed

I thought you needed something like Caddy to get certificates

You can, and Caddy works well. It just didn't make sense in this scenario. No worries, mate.

but I’m going to give it a proper look once I’ve had some sleep.

Well. I do have some notes tjat might help put the pieces together, if you get stuck.

The main thing I’m still not sure of is Tailscale

I use tailscale on the server as a ~~overlay~~ protective overlay, which could be accessed as well if needed,

[–] Tippon@lemmy.dbzer0.com 2 points 2 hours ago (1 children)

Please don't apologise, you and the other commenters have been a massive help :)

It's sod's law though, I was supposed to have two pretty much free days yesterday and today, and they've turned out to be two of the busiest days I've had for a long time. Networking is one of my blind spots, I can never quite get my head around it, so gave myself two days to try to get up to speed and seem to have jinxed myself :D

I'm going to spend an hour or two now playing around with Cloudflare and Navidrome and see if I can get a better grip on it all.

Thanks again for the help :)

[–] irmadlad@lemmy.world 1 points 2 hours ago

It’s sod’s law though, I was supposed to have two pretty much free days yesterday and today, and they’ve turned out to be two of the busiest days I’ve had for a long time. Networking is one of my blind spots, I can never quite get my head around it, so gave myself two days to try to get up to speed and seem to have jinxed myself :D

OK, well the notes offer is still valid if you should so need them.