Caddy¶
Last Updated: 2026-03-06 Status: Active
Purpose¶
Caddy is the reverse proxy for the homelab. It handles HTTPS termination, routes traffic to internal services, and manages TLS certificates automatically.
Current Location¶
Running on: URL (admin):
Access¶
| Method | URL | Use Case |
|---|---|---|
| LAN | Port 80/443 | HTTP/HTTPS ingress |
| VPN | Via Tailscale | Remote access to proxied services |
Configuration¶
Caddyfile location:
Virtual Hosts / Routes:
| Domain | Backend | Notes |
|---|---|---|
TLS: - - Certificate storage:
Data¶
- Config path:
- Data path:
Backup¶
- Config included in VM/container backup via Proxmox
- Caddyfile should also be version-controlled here ()
- Offsite: Via Synology NAS to Backblaze B2
Recovery Notes¶
- TLS certificates are re-issued automatically on restore if ACME is configured
- Verify DNS records point to correct IPs before starting Caddy
- Caddyfile syntax can be validated with
caddy validate
Common Commands¶
# Validate Caddyfile
caddy validate --config /etc/caddy/Caddyfile
# Reload config without restart
caddy reload --config /etc/caddy/Caddyfile
# Check running config via API
curl http://localhost:2019/config/
# View logs
journalctl -u caddy -f
Known Issues¶
| Issue | Status | Notes |
|---|---|---|
| — | — | — |