-
I'd like to use my cloudron as an intranet (like this). As of now, I'm using the VPN and my cloudron is exposed on its public IP, not its internal IP. But I think I'm facing a chicken and egg problem: if I switch couldron to listen to the internal IP, the VPN server will not be reachable from outside…
Is there a recommended way to do that?
BTW, the docs says:
In an intranet setup, Cloudron has no way to get Let's Encrypt certificates without a programmatic DNS provider.
I'm not sure how that helps? Let's encrypt can never generated certificates for myinternaldomain.lan, can it?
-
J james marked this topic as a regular topic
-
J james moved this topic from Support
-
I'd like to use my cloudron as an intranet (like this). As of now, I'm using the VPN and my cloudron is exposed on its public IP, not its internal IP. But I think I'm facing a chicken and egg problem: if I switch couldron to listen to the internal IP, the VPN server will not be reachable from outside…
Is there a recommended way to do that?
BTW, the docs says:
In an intranet setup, Cloudron has no way to get Let's Encrypt certificates without a programmatic DNS provider.
I'm not sure how that helps? Let's encrypt can never generated certificates for myinternaldomain.lan, can it?
@cpa said in Intranet & VPN app:
a chicken and egg problem
Indeed.
@cpa said in Intranet & VPN app:
Is there a recommended way to do that?
AFAIK, not from the Cloudron Team.
There are products out there like Cloudflare Tunnels or Pangolin .
Here is also a big topic about Cloudflare tunnels https://forum.cloudron.io/topic/10395/cloudron-proxmox-cloudflare-tunnels@cpa said in Intranet & VPN app:
Let's encrypt can never generated certificates for myinternaldomain.lan, can it?
If you use a programmatic DNS, certificates should be generated via DNS-01 challenge.
So no exposed inbound port 80/443 would be needed. Only outbound to the API of the DNS provider. -
@cpa said in Intranet & VPN app:
a chicken and egg problem
Indeed.
@cpa said in Intranet & VPN app:
Is there a recommended way to do that?
AFAIK, not from the Cloudron Team.
There are products out there like Cloudflare Tunnels or Pangolin .
Here is also a big topic about Cloudflare tunnels https://forum.cloudron.io/topic/10395/cloudron-proxmox-cloudflare-tunnels@cpa said in Intranet & VPN app:
Let's encrypt can never generated certificates for myinternaldomain.lan, can it?
If you use a programmatic DNS, certificates should be generated via DNS-01 challenge.
So no exposed inbound port 80/443 would be needed. Only outbound to the API of the DNS provider.
