Looking for feedback on simplifying self hosting
https://lemmy.blahaj.zone/post/18332361
=> More informations about this toot | More toots from sem@lemmy.blahaj.zone
Lots of options. Here’s what I do:
I have HAProxy running on my VPS (Hetzner), and it routes traffic over my WireGuard VPN to whatever physical device on my internal network handles that service (i.e. 2). This allows me to add devices to my network as needed, and TLS certs all live on that device.
This is probably overkill for your setup since it sounds like you can talk to your home router from the internet (I can’t because I’m behind CGNAT), so you could drop #1 and just use Caddy, assuming you’re okay with having all traffic handled by a single device. Or you can see if your router supports SNI-based routing to handle what I’m using HAProxy for.
If you don’t need to share your services w/ anyone, you can have everything live inside of a VPN and just access it via that VPN. You can look into Tailscale if you want something dead simple, and I think Cloudflare offers something similar. I started with that, but decided I wanted to share a number of services with family members, and I didn’t want to force each of them to configure my VPN.
=> More informations about this toot | More toots from sugar_in_your_tea@sh.itjust.works
Thanks for the information. I will have to look into SNI and see if my router can support it – if I move someday to an ISP behind a more restrictive firewall, this system looks pretty good. (Or if I get unhappy with one reverse proxy handling everything).
=> More informations about this toot | More toots from sem@lemmy.blahaj.zone This content has been proxied by September (3851b).Proxy Information
text/gemini