Removing
@external {
not remote_ip 192.168.0.0/16
}
respond @external "Access denied. This is an internal website." 403 {
close
}
still results in the same thing happening.
Here’s the new config, still broken:
# /etc/caddy/Caddyfile
# External site
site1.example.com {
tls {
dns cloudflare supersecretcloudflareapikey
######################## Here is the issue ########################
client_auth {
mode require_and_verify
trusted_ca_cert_file /etc/caddy/cloudflare-origin-pull-ca.pem
}
###################################################################
}
respond "Hello, world!"
}
# Internal sites
*.internal.example.com {
tls {
dns cloudflare supersecretcloudflareapikey
}
@pass host pass.internal.example.com
reverse_proxy @pass bitwarden:80
@reader host reader.internal.example.com
reverse_proxy @reader miniflux:80
}