I’ve had pretty good experience with caddy, although some key aspects of documentation I found hard to find - namely, how to use it with docker compose and a custom build with other plugins like dns challenge and dynamic dns
Should Caddy and Traefik Replace Certbot?
Submitted 9 months ago by leo@lemmy.linuxuserspace.show to technology@beehaw.org
https://www.eff.org/deeplinks/2024/03/should-caddy-and-traefik-replace-certbot
Comments
iiGxC@slrpnk.net 9 months ago
gullmar@feddit.it 9 months ago
Personally, I followed the instructions to install Caddy with Docker Compose in the Nextcloud AIO reverse proxy documentation. Regarding building custom images, there are the instructions to build a custom Caddy image in a Dockerfile in the Docker Hub page.
iiGxC@slrpnk.net 9 months ago
Yep, I think that’s what I found too. I set it up to use nextcloud aio as well, it just took me a while to find that docker page
nis@feddit.dk 9 months ago
So… Did you find documentation about how to do that?
iiGxC@slrpnk.net 9 months ago
Yes, but it was piece by piece as I went
jherazob@beehaw.org 9 months ago
I use this, it’s very much not perfect but works: github.com/lucaslorentz/caddy-docker-proxy
palarith@aussie.zone 9 months ago
I use cerbot, but not trusting enough to let it touch any conf files
Rekhyt@beehaw.org 9 months ago
Yeah, it just replaces the cert files and reload/restarts nginx for me. I don’t want it anywhere near my config files.
jarfil@beehaw.org 9 months ago
Isn’t Certbot like the “reference implementation” though?
I’ve been using Traefik for several years now, but I think having a tool that allows troubleshooting the process step by step is also valuable.
rimu@piefed.social 9 months ago
I did not realise this. Very nice, I'll be trying Caddy on my next server!
elvith@feddit.de 9 months ago
My newest vps runs with Caddy. Works like a charm. The downside was, that I didn’t think of the automatic certificate deployment when I set everything up and it wouldn’t come up a first when I only wanted to connect locally to it, as it tried to get a certificate but the challenge failed because I hadn’t the firewall open yet. But besides that it was very smooth so far.
Kangie@lemmy.srcfiles.zip 9 months ago
I use Traefik for all of my containerised services. It’s fantastic.