HTTPS with Tailscale certs & TS domain
I'm just curious if I can pull this off.
I understand that tailscale does HTTPS letsencrypt certs (https://tailscale.com/kb/1153/enabling-https). I also found that traefik supports tailscale cert resolver natively (https://www.tailscale.com/blog/traefik-certificate-resolver?ref=traefik.io & https://traefik.io/blog/exploring-the-tailscale-traefik-proxy-integration/)
I want to set the local domain to my tailnet domain so that jellyfin.<tailnetdomain>.ts.net uses the tailscale cert resolver and resolves the HTTPs certificate.
is there any way I can achieve this? can I set the local domain to be the tailnet domain?
what I've tried
I've changed
and the following user config
with this, I can get
https://<machinename>.<tailnet>.ts.net (host domain) https working with a valid lets encrypt cert.
but the subdomains such as deluge.<machinenmae>.<tailnet>.ts.net does not resolve at all.
in context, I setup <tailnet>.ts.net as the local domain since everything is running inside tailscale
I understand that tailscale does HTTPS letsencrypt certs (https://tailscale.com/kb/1153/enabling-https). I also found that traefik supports tailscale cert resolver natively (https://www.tailscale.com/blog/traefik-certificate-resolver?ref=traefik.io & https://traefik.io/blog/exploring-the-tailscale-traefik-proxy-integration/)
I want to set the local domain to my tailnet domain so that jellyfin.<tailnetdomain>.ts.net uses the tailscale cert resolver and resolves the HTTPs certificate.
is there any way I can achieve this? can I set the local domain to be the tailnet domain?
what I've tried
I've changed
myresolverand the following user config
with this, I can get
https://<machinename>.<tailnet>.ts.net (host domain) https working with a valid lets encrypt cert.
but the subdomains such as deluge.<machinenmae>.<tailnet>.ts.net does not resolve at all.
in context, I setup <tailnet>.ts.net as the local domain since everything is running inside tailscale
Tailscale
Learn how to configure HTTPS for devices in your Tailscale network.
Traefik, the popular load balancing and reverse proxy tool, has added support for Tailscale as a certificate resolver in Traefik Proxy 3.0 beta, the latest release of its forward proxy offering. Today, one of the engineers behind this integration has published a fun deep dive into how it works and how they’re using Tailscale to help with testing...
