Self-signed certs
From
poindexter FORTRAN@1337:3/178 to
All on Fri Nov 28 15:06:19 2025
I started setting up letsencrypt certs on my homelab as a learning exercise - mostly because I'd set up NGINX Proxy Manager for a host and could proxy port 80 to my equipment.
It's always been fiddly, Proxmox sometimes seemed to fail renewal, and so I'd need to manually change the port forward on port 80 to Proxmox, and inevitably leave it there for a few minutes.
I decided to punt on LE certs and instead use self-signed certs. I don't access the homelab from outside my LAN, so don't really need LE certs, I just didn't like the warnings. I took the added step of importing the certs, and now I can close port 80 off to my homelab and minimize my exposure from the outside.
It was about this time that I looked at my port forwarding rule and realized that LetsEncrypr renewals were failing because I'd disabled the port forward accidentally. Turned it back on and LE is working fine.
Now that I have the self-signed certs imported, I think I'll leave things as-is and minimize what the outside world can see of my network.
--- SBBSecho 3.30-Win32
* Origin: realitycheckBBS.org -- information is power. (1337:3/178)