Which reverse proxy do you use/recommend?
-
Thank you, that looks like a good set of hooks for me to get into at a weekend, child allowing.
I very much appreciate the guide. I'll let you know when I've had a fiddle.
-
Does it do auto certificate renewal?
Yes.
Have you considered using a Cloudflare tunnel to bypass the CGNAT?
I did before when I had some free domain over there, but I don't think there are any worthy free domains out there anymore, and even when they are cheap, I really don't need it and don't feel comfortable to pay for something that I can't use in its fullest (due to CGNAT).
For example, I am aware cloudflare tunnels can't be used for a Plex/Video streaming and that is the number 1 service that I want to be exposed to the Internet.
For now I am living with my IPv6 address and the Synology DDNS with the reverse proxy features... My personal fallback are Tailscale and Zerotier.
-
Nginx installed directly, I use nano over ssh to edit configs. Forces you to learn some things and I never moved passed it because it works so well.
-
I think NGINX has the best reverse proxy
-
Yes, but it is a different cron job that needs to run, and you need to monitor it for failures. Caddy does everything out of the box, including retries.
-
Actually I found traefik rather easy, I just had to make the proper docker labels and config.
PITA
Unrelated, I'm going to sound like a grammar nazi here, but holy shit there are so many acronmys, how am I supposed to know every one of them without googling? Please just say "traefik is a pain in the ass". Also please don't take this as a snarky reply.
-
I used NPM, It was pretty solid
Then I changed headspace and now I run SearXNG through cloudflare, and tailscale everything that doesn't need to be public.
-
I am using nginx on a separate machine (VM)
I have yet to try it in docker, I just have not found a reason to change it yet.I've tried npm, caddy and traefik but they are always way more complicated then adding a new config file in nginx...
I feel the others add too much to the docker configs and limit what can be added to the reverse proxy.
I have control of access from the nginx server, without having to change the apps configuration.NPM is the closest to what I would like (only needing the same network in docker) if I go the docker way but for some reason it never works as it should when I configure it. So I am sticking to plain nginx.
-
NPM was the first one that worked for me. I used a YouTube tutorial. I tried Nginx and Caddy, but couldn't figure them out. For context, I try to run anything I can out of Docker, which adds some complexity I think. I must not have been doing the templates correctly or something.
I plan on trying to go for Nginx or Caddy later, but right now NPM works wonders for my use case.
-
PITA = pain in the ass.
I never said it was hard. Just a real pain in the ass. Like iptables vs UFW. They're the same thing, but one is easy and a pain in the ass and the other is just easy... So I opt to make my life easier. lol
-
I really like Zoraxy. Similar to NPM but it's its own thing and I like it a lot more
I know how to use raw nginx/Caddy/traefik to do it, but I find the WebUI and all the extra features Zoraxy has to be very convenient and easy to use.
-
I highly recommend npm. It's also the only one I've used, so please keep that in mind.
-
Seconding Caddy. I've been using it for a couple of years now in an LXC and it's been very easy to setup, edit and run.
