Reverse-Proxy: Difference between revisions
No edit summary |
No edit summary |
||
| Line 16: | Line 16: | ||
<p>Now Caddy2 is used for the ReverseProxy, because it's more stable and integrated</p> | <p>Now Caddy2 is used for the ReverseProxy, because it's more stable and integrated</p> | ||
__TOC__ | __TOC__ | ||
== | == Caddy Installation == | ||
<p>[https://caddyserver.com/download Download] Caddy2 with Security Plugin</p> | |||
<p>Copy binary to directory</p> | |||
<syntaxhighlight lang="console"> | |||
mv ./caddy_linux_amd64_custom /usr/bin/caddy | |||
</syntaxhighlight> | |||
<p>Create user and group</p> | |||
<syntaxhighlight lang="console" lines> | |||
addgroup caddy | |||
adduser --system caddy | |||
adduser caddy caddy | |||
</syntaxhighlight> | |||
<p>Set permissions for binary</p> | |||
<syntaxhighlight lang="console" line> | |||
chown caddy:caddy /usr/bin/caddy | |||
chmod 770 /usr/bin/caddy | |||
</syntaxhighlight> | |||
<p>Create caddy file</p> | |||
<syntaxhighlight lang="console"> | |||
nano /home/caddy/Caddyfile | |||
</syntaxhighlight> | |||
<p>In my installation I separated many config files for better overview</p> | |||
/home/caddy/ | |||
├─ Caddyfile | |||
├─ auth/ | |||
│ ├─ local/ | |||
│ │ ├─ users.json | |||
├─ lxc/ | |||
│ ├─ 101_adguard | |||
│ ├─ 102_reverse_proxy | |||
│ ├─ ... | |||
├─ network | |||
├─ security | |||
├─ vm/ | |||
│ ├─ 200_truenas | |||
│ ├─ 201_home_assitant | |||
│ ├─ ... | |||
<p></p> | |||
<syntaxhighlight lang="console"> | |||
</syntaxhighlight> | |||
Revision as of 22:59, 11 February 2023
| IP: | 192.168.88.3 |
|---|---|
| MAC: | 56:59:71:B1:85:BC |
| OS: | Debian Bullseye |
|---|---|
| Files: | x |
| RAM: | 1024MB |
| Cores: | 1 |
| Privileged: | No |
The ReverseProxy is reachable under 192.168.88.3 which is located in the ServerVLAN.
Every incoming packages from outside are forwarded to this IP.
The ReverseProxy also forces outside connections to use HTTPS/SSL and will provide a SSL-Certificate.
Previously Nginx Proxy Manager and Authelia was used for ReverseProxy: Guide
Now Caddy2 is used for the ReverseProxy, because it's more stable and integrated
Caddy Installation
Download Caddy2 with Security Plugin
Copy binary to directory
mv ./caddy_linux_amd64_custom /usr/bin/caddy
Create user and group
addgroup caddy
adduser --system caddy
adduser caddy caddy
Set permissions for binary
chown caddy:caddy /usr/bin/caddy
chmod 770 /usr/bin/caddy
Create caddy file
nano /home/caddy/Caddyfile
In my installation I separated many config files for better overview
/home/caddy/ ├─ Caddyfile ├─ auth/ │ ├─ local/ │ │ ├─ users.json ├─ lxc/ │ ├─ 101_adguard │ ├─ 102_reverse_proxy │ ├─ ... ├─ network ├─ security ├─ vm/ │ ├─ 200_truenas │ ├─ 201_home_assitant │ ├─ ...
