1. Caddy version:
2.6.2 alpine
2. How I installed, and run Caddy:
Working docker-compose file
a. System environment:
Ubuntu Server
d. My complete Caddy config:
service1.subdomain.org {
reverse_proxy somecontainer:8000
}
# ... more reverse proxies
3. The problem I’m having:
I run a cloud Ubuntu server for personal use. I use Caddy as a reverse proxy to various services running in Docker containers, varying from simple websites to e-mail servers and other applications.
I would like to make all these services inaccessible to any other machines other than mine.
My first thought would be generating self-signed certificates and specifying in Caddy to approve connections only if this certificate is present.
Is this a good idea? Is there a better and/or simpler way? Will this (possibly) interfere with any protocols that an e-mail server or other applications might use? Or will this solution not work for these services?
I figured any kind of external Caddy plugin would be unnecessary complex for my use case, unless there’s a good suggestion.
Kind regards