[SOLVED] Question about Caddy configuration

Started by afX33800, July 11, 2024, 06:49:07 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 11, 2024, 06:49:07 PM Last Edit: July 17, 2024, 11:41:41 AM by afX33800
Hello,

I've a question about Caddy configuration.

I'm trying to configure on my opnsense (by the plugin), and I am searching about split DNS configuration.

For me I have to write a DNS override on Unbound, but what's is the target on A ?
A = 0.0.0.0 or on other address ?

tank's for your help.
July 11, 2024, 07:51:14 PM #1
Hello,

read this thread here, I explained how to configure the DNS properly in detail:

https://www.reddit.com/r/opnsense/comments/1dwbr88/issue_using_oscaddy_to_generate_wildcard_cert/
Hardware:
DEC740
July 11, 2024, 09:20:51 PM #2
Hello,

Thanks for your answer.

Just to be sure that I've a good understanding :

If I've domain.com, I setup a A record on my dns provider for subdomain.domain.com.
Then I setup Cname for app.subdomain.domain.com to my previously A record right ?

And no record on unbound.

But a point that I doublt. My reverse proxy hasn't aim to serve app on external (or just one maybe). With this configuration when I try to Connect to app.subdomain.domain.com I will be see by OpnSense coming from external right ? So Acl to restrict to internal ip will always match so I Will never Access ?

Thanks for your informations


July 11, 2024, 10:19:36 PM #3
Yeah you understood right.

Just try it out. The ACL will match when your clients are in internal Networks behind the OPNsense (if you want to restrict access.)

The OPNsense will see the internal IP address reaching your external address.
Hardware:
DEC740
July 17, 2024, 11:41:05 AM #4
thanks for you help.

It work, it's now solved.
July 17, 2024, 12:39:24 PM #5
Great, thanks for checking back in. ;)
Hardware:
DEC740
Print
Go Up Pages1
User actions