- Have self-hosted services on a home network like Plex, Sonarr, and Heimdall be secured with a proper TLS cert from Let's Encrypt.
- The certs will auto-renew.
- No port-forwards are needed.
- Publicly accessible domain.
- Caddy web server.
- Have hosted services on a home network.
- Create a Cloudflare account and link your domain to use Cloudflare's DNS. This process can take a few hours.
- After a successful link add a CNAME record for each local service
- Navigate to https://caddyserver.com/download and include the “caddy-dns/cloudflare” module, then download.
- Create a folder C:\Caddy and move the executable into the folder.
- Rename the executable to caddy.exe
- Create a file called Caddyfile, with no extension.
- Open with a text editor and paste the following:
{
acme_dns cloudflare myCloudflareTokenKey
}
https://plex.mysite.com {
tls {
dns cloudflare myCloudflareTokenKey
}
reverse_proxy localhost:32400 {
}
}
If using Google Chrome consider disabling Secure DNS as it may cause connection issues when connecting to your local site.
Vague 7 Step Process with Caddy, Let's Encrypt, and Cloudflair
Caddy Setup Google Doc