Hello all, new user here. I’m in the process of transitioning as much of what I host as I can to linuxserver images, so I’m working on one huge docker-compose file to do it with. (At this point, bitwarden_rs is the only thing I host that you don’t have an image for, but that’s neither here nor there).
I’ve seen the reverse proxy config samples for the letsencrypt container, (which fortunately has a bitwarden sample even if there’s no bitwarden image). I know that all my services need to be on the same network, which is fine, and right now I just have it setup to use the default bridged network.
I am on a Synology NAS though, so unfortunately ports 80 / 443 are in use. At the moment I am getting around this by having my router forward 80 / 443 to the ports I have nginx running on. But this means even requests from inside my home go out over the internet, which isn’t really ideal. Ideally, the requests would be handled by a private DNS server from within the house, and go out over the internet if I was outside of the house. But DNS doesn’t have a concept of ports as far as I know, so I think I need ports 80 / 443 for that.
I’m considering trying to run all my services on a macvlan network so I can give the letsencrypt container a static IP which should have 80 / 443. That way I can later set up a private DNS so that if I’m on my LAN my requests for self-hosted services shouldn’t go out over the internet.
It’s just hard to find macvlan examples, particularly using docker compose, and I wanted to ask if anyone had done anything of this nature using the linuxserver.io images, would the letsencrypt reverse proxy examples work on a macvlan network (I would assume so if all the services are attached to the same network), and maybe if whoever has done it has an example?
If there’s a better way altogether to achieve what I am after I am all ears as well. I am by no means a networking guru, I’ve only been running my own server for 2 or 3 months as it is.