July 5, 20242 yr I have Vaultwarden docker running on Unraid. Using Nginx Proxy Manager combined with a domain and Cloudflare, and this works fine. Letsencrypt over DNS so I only have to have port 443 forwarded in my router. Again, working fine. However.... The other day I was without internet for a few days (ISP screwed up) and I found I could not access my passwords at all. I was able to use internet through USB tethering, but my IP address changed and now I was not able to access the vault. Or even worse, without internet at all there is no way to get into my vault, which runs locally on my server! And I only need LAN access anyway, I don't care about getting my passwords over the internet. I just want to be able to access my passwords from within my LAN always, whether or not it is connected to the internet. I have searched and searched, but I can't find any guides to tell me how to set this up. I must be crazy for thinking I am the only one who wants to set it up this way? Is there anyone out there who can tell me how I can make it possible?
July 5, 20242 yr Community Expert Set up a local DNS server that is configured to resolve your domain(s) to the server IP (e.g. pi-hole), and run NPM on 80/443. You can probably also just access the web ui by opening it from unraid's docker page. Edited July 5, 20242 yr by Kilrah
July 5, 20242 yr Author Thanks for the reply! So I have an Unraid server. I could use that to host the local DNS, as well as host Vaultwarden in a docker? Or does it have to be a seperate hardware device? And with this setup, I guess I would still need letsencrypt certificates, right? So how would that work? I guess I would also need to setup a letsencrypt service of some kind on the server that can renew the certificate locally?
July 5, 20242 yr Community Expert 1 hour ago, lococola said: So I have an Unraid server. I could use that to host the local DNS, as well as host Vaultwarden in a docker? Yes 1 hour ago, lococola said: I guess I would also need to setup a letsencrypt service of some kind on the server that can renew the certificate locally? NPM does that for you already. Won't be able to renew if internet is down obviously, but other than that probably no change from now.
July 6, 20241 yr Author I found a video on YT here that says it should be able to work without using a local DNS server. Have not been succesful yet in trying to set that up though. EDIT: never mind, looks like it's actually working. It's just that NPM needs to be able to use port 80 and 443, and for that I had to change the ports in the Unraid webui mgmt menu. Need to do some further tests but it looks like that video was the solution for me after all. Edited July 6, 20241 yr by lococola
October 1, 2025Oct 1 Is there a guide on how to do this? I would like to be able to access my vault only when connected to my vpn which is my unraid server.
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.