Per Caddy documentation, port 80 is also required, and now I suspect the not serving that port is causing Caddy to fail to issue you a tls certificate.
Try adding a simple text response like this (warning, formatting may not be perfect due to typing on mobile). Also setup a port forward on your router to your caddy host on port 80.
my-domain.com:80 { respond "Buzz off" }
Hopefully this will kick off the tls registration and then get your site on 443 working as well.
Proxmox PVE gang. Excellent platform to self-host anything you could want to run from Windows/Linux VMs, LXC containers, Docker, or mix and match. The web GUI makes management easy and gives you a nice dashboard too.
Document everything. Found a useful link that helped you configure something? Copy the link. Finally got your proxy working right? Save the config. Even just make notes of how you set things up.
Refine and build you notes along with your knowledge.
Eventually, consider keeping all your config files in a self-hosted repository like Gitea.
Oh, and when stuff breaks it's probably DNS.
A few things may be going on.
The errors seem focused on the tls certificate, which caddy tries to automatically provision.
First, in your caddyfile, "my.server" should reflect the real address used for access. Something like "jellyfin.my-domain.com". This is important for the tls certificate to be generated correctly.
Once updated, pull out a cell phone, turn off wifi (use LTE/5G), and verify it can connect to your site. This makes sure you can access from outside your home network.
Once confirmed working, try again from your home network. Most likely the page will timeout. This will be due to DNS pointing you back to your own network, which can cause trouble. This can be solved several ways. One is by adding a static DNS entry which points to the IP of your caddy server. You can do this on a per system basis in the hosts file, or at the lan level with you DNS server or router, assuming it allows you to add a custom DNS entry. I do this with my Mikrotik router.
That should get things working internal and external.
The memes on Lemmy have been delightful in that many of them legitimately make me laugh. Keep up the good work!
It's been ages since I ran into a site issue, using both desktop and mobile Firefox. Not saying it doesn't happen, but seems that issues are very few and far between these days.
I have done this before by setting up a Wireguard VPN link between my home server and a VPS, and then running a reverse proxy (such as Caddy) on the VPS, which basically forwarded web requests to my home server. This works well for most things, although there was a definite performance hit by routing traffic through the extra hop.
By using the VPN connection, you wouldn't even need to open a port on your home network which is a great starting point for security as well.
Practically every recommendation I've seen on buying a domain is either:
- PorkBun
- CloudFlare
These two use very straightforward pricing, with no gotchas.
Enable app links in Android app settings. Then links will open directly in Jebora.
Thanks for the fond memory of TechTV. I also listened the heck out of the SecurityNow podcast.
Agree, there is very low friction to switching off reddit onto another site offering a similar service with a better experience. Lemmy seems to be offering exactly that, and if we continue to see growth in posts and engagement, it will be very successful.
Firewatch is great! Since you liked that, also check out Life is Strange: True Colors
I see no reason you couldn't. Just change the listen port on the nginx config to something other than 80 (so it doesn't conflict), then tell treafik to send traffic to that port. Disclaimer, I'm not well versed with treafik, but have worked with several other reverse proxies to know the general idea.
I for one am happy to find a new self-hosted community starting here! It's the one thing that kept me going back to reddit over the past few months but now am finding more and more I can shift my time here instead.
Self-hosting is exactly what guarantees it wouldn't happen on Lenny.
I could envision a 2nd class of server, running something like OAuth/OIDC, which handles the authentication into any Lemmy instance (or better yet, any ActivityPub based instance).
This server would also be self-hostable, and provide only authentication services, so it would be rather lightweight. But would help reduce the load on the content servers.