How do I set up TLS for a private instance? #404
-
|
Hi, Seems the android app won't connect to my instance, presumably because TLS isn't set up: it's a private instance that I don't want exposed to the internet. There's an option to set up a mutual tls cert, but I have no idea how to do this. What are others in the same situation doing? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
You can try using letsencrypt with dns challenge which only requires a compatible dns provider for your Domain. (which needs to be an normal registered Domain) When you like to use your service only via local network without exposing to the Internet, you can create a dns record of the type A with your private Server IP. E.g. paperless.mydomain.tld will point to 192.168.178.10 This setup is technically absolutely acceptible and secure. I would recommend looking at traefik loadbalancer, because it can do all the certificate stuff very easily. |
Beta Was this translation helpful? Give feedback.
-
|
Thanks. After a bit of research I came to the same answer. A bit more involved than I had hoped, but such is life :) |
Beta Was this translation helpful? Give feedback.
You can try using letsencrypt with dns challenge which only requires a compatible dns provider for your Domain. (which needs to be an normal registered Domain)
When you like to use your service only via local network without exposing to the Internet, you can create a dns record of the type A with your private Server IP.
E.g. paperless.mydomain.tld will point to 192.168.178.10
This setup is technically absolutely acceptible and secure.
I would recommend looking at traefik loadbalancer, because it can do all the certificate stuff very easily.