I managed to sucessfully reverse proxy several programs that are hosted with ddns but I have one confusion. I can access web interfaces of those programs(sonarr,radarr,emby…) securely with https://domain_name/subpaths but I can also access them with http://domain_name.com:port which is not protected. Is it supposed to be like this or is there a way to disable/block access to http address which is not protected.
Edit: I think I have figured it out. I should disable port forwarding for every port except 443 and 80 which Caddy uses?
Also as an aside, I typically recommend using subdomains for proxying to your individual services. Many apps don’t behave well when proxied under a subpath.