January 17, 20215 yr Hello guys. I'm trying to get my head around a complete setup for my Unraid server where all dockers/containers/services could be reached or accessible using FQDN for example: - https://unraid.mydomain.com - https://stats.mydomain.com - https://sonarr.mydomain.com This will allow me to access my server from anywhere without any issues, I'm currently using Nginx Proxy Manager and is working properly for a few URLs. A couple of concerns: 1- When I'm in my local Network I don't want my request go through my WAN and Router after resolving my FQDN, when the request is within the LAN I want to keep it within the LAN but still be able to use the FQDN/URL. 2- All configurations between dockers/containers (Sonarr/Radarr/Plex/Bazarr/qBittorrent)should be done using those URLs/FQDN but still keep the communication within the LAN when possible. There is any guide out there about this kind of setup?
January 17, 20215 yr Community Expert First things first, don't expose unraid to the internet. Only expose the ports needed for services you want to access, or you're in for a bad time. If you want to access unraid remotely, use a vpn. 1- DNS entries in your firewall/router for each FQDN, or local hosts file if you like it dirty - should also solve question 2
January 17, 20215 yr Author @Michael_P Thank you. - Probably some DNS entries in the unraid host file to handle local(LAN) IP addresses would be enough, I need to test that. About exposing it to the internet that is my whole point, I need it accessible from outside my Network but I'm going to consider VPN, otherwise I just need to do a full and enforced https setup, and probably a good fail2ban configuration. Thanks.
January 17, 20215 yr Community Expert Exposing the OS to the internet is a Bad Idea™️ Unraid is not a hardened OS and will likely be pwned within minutes, see the security forum for examples. If you need access to the OS remotely, VPN is the only safe way to go. https://forums.unraid.net/forum/27-security/
Archived
This topic is now archived and is closed to further replies.