Geri/reverse-proxy-setup
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
My setup for exposing my home server to the internet without port forwarding
9 commits 1 branch 0 tags 33 KiB
Find a file
Exact
Gerard Gascón a45d99fa1e fix: body size for jellyfin
2025-05-12 23:39:08 +02:00
.gitignore Initial commit 2025-04-26 15:03:06 +02:00
docker-compose.yaml Initial commit 2025-04-26 15:03:06 +02:00
nginx.conf fix: body size for jellyfin 2025-05-12 23:39:08 +02:00
README.md feat: improved guide on readme 2025-05-12 14:25:46 +02:00

README.md

Reverse Proxy Setup

My setup for exposing my home server to the internet without Port Forwarding.

Tailscale

I use Tailscale to connect my home server with the docker in the VPS. This way I don't need to open ports in order to connect this two endpoints.

nginx

I use nginx to route my VPS traffic to the various services I have inside my home server.

DNS Setup

First, I create an A record pointing to my server, this A record could be used for a specific service, but there I just serve the default nginx page:

vps.gerardgascon.com.    IN    A    146.190.236.48

All subsequent domains I want to point to a home server service will have a CNAME pointing to that base A record:

git.gerardgascon.com.    IN    CNAME    vps.gerardgascon.com.

Steps to add a new service

  1. Add CNAME record to DNS
  2. Modify nginx.conf to add support for the new service: 
     server {
     listen 443 ssl;
     server_name <<url>>;

     ssl_certificate /etc/letsencrypt/live/<<url>>/fullchain.pem;
     ssl_certificate_key /etc/letsencrypt/live/<<url>>/privkey.pem;

     location / {
         proxy_pass http://<<tailnet_ip>>:<<service_port>>/;
     }
 }
  3. Request SSL certificate and deploy: 
    docker compose stop nginx && certbot certonly --standalone -d <<url>> --expand && docker compose up -d