-my_reddit_username-

joined 2 years ago
sorted by: new top controversial old
Finally using SSL certs on my local services, no more HTTPS warnings. Someone appreciate because my GF could care less in c/homelab@selfhosted.forum
[–] -my_reddit_username-@alien.top 1 points 2 years ago

That was the route I always thought I had to go, but it's quite a bit more work/config. One day!

Finally using SSL certs on my local services, no more HTTPS warnings. Someone appreciate because my GF could care less in c/homelab@selfhosted.forum
[–] -my_reddit_username-@alien.top 1 points 2 years ago

There was actually, cloudflare seemed to not like 2nd level subdomains. So using a wildcard cert for *.foo.bar.com didn't work for the setup as described in the video, but *.bar.com did.

The other thing was just specific to some of the services I use, like proxmox needed specific NGINX config that I mentioned in this comment. That was it really! DNS and NGINX isn't that foreign to me so I was comfortable, but it was pretty simple IMO. Give it a shot!

Finally using SSL certs on my local services, no more HTTPS warnings. Someone appreciate because my GF could care less in c/homelab@selfhosted.forum
[–] -my_reddit_username-@alien.top 1 points 2 years ago

Yup, it's through Let's Encrypt. It was a relatively painless setup. I'm quite pleased.

1
Finally using SSL certs on my local services, no more HTTPS warnings. Someone appreciate because my GF could care less (alien.top)
 

I love my homelab, and the more I tune things the more satisfaction I have. I tolerated the "Your connection is not private" for my self-signed SSL certs on my services for way too long.

I just setup NGINX Proxy Manager as a LXC on my Proxmox Server and pointed a subdomain I own to the server. Now I have custom domains for each service along with valid SSL Certificates. It's all local without exposing anything to the outside world. It's very satisfying. I tried explaining what I was doing to my GF but she could care less ¯\_(ツ)_/¯

Followed this video from Wolfgang's Channel YouTube (great channel btw), the first minute does a better job explaining the setup. I always thought I would have to setup a local CA which is more work than I was interested in, but this approach was much simpler (and free!).