Hey everyone! I'm fairly new to Docker and I've got some questions. I've set up several Docker containers on my homelab, like a couple of *arrs and music streaming services, and I'm currently using Tailscale for a VPN to connect everything. Usually, I access my services via http://[hostname]:[port]. However, I'm looking to enable HTTPS to eliminate those annoying login screen warnings. Since I don't want to use my domain for this, I'll need to create a self-signed certificate. My questions are: A) If I generate a self-signed certificate, do I only need to install it on my home server, or will I have to set it up in every single Docker container? B) If I do need to set it up in every container, could someone provide a quick and secure guide on how to do that? By the way, I'm running six Docker containers managed by docker-compose, and Tailscale isn't running as a Docker container on my server.
3 Answers
I totally understand your confusion! One thing to clarify is how you're running Tailscale. Do you have it set up directly on your home server (bare metal), or is it running inside one of your containers? Both setups work, but they have their own pros and cons.
Honestly, you don't necessarily need an SSL certificate if you're just accessing your services locally over a secure connection like Tailscale or SSH. But if you do need secure endpoints for public access, I recommend using Caddy as a reverse proxy. Also, Tailscale can provide a TLS certificate if you're using the Funnel feature.
I'm running Tailscale on bare metal.
Related Questions
Set Wordpress Featured Image Using Javascript
How To Fix PHP Random Being The Same
Why no WebP Support with Wordpress
Replace Wordpress Cron With Linux Cron
Customize Yoast Canonical URL Programmatically
[Centos] Delete All Files And Folders That Contain a String