Sorry if this might be a stupid question, but I just need to understand why and if I should get this set up right away.
Right now I have my Hassio running on port 8123 with a static Public IP Address that I use to connect to. I am using different systems to connect to the Hassio (Ariela App, Chrome on Laptops and I do also use IOS.
So I was wondering, if I then add the DuckDNS feature and get the certificate. Then my hassio will use https instead of http right, and then the traffic will be encrypted?
I would still be able to access my Hassio just using the Public Address if I want, and then the traffic will still be encrypted right - because of the change in the configurations file and the base_url?
if I then add the DuckDNS feature and get the certificate. Then my hassio will use https instead of http right, and then the traffic will be encrypted?
Correct.
I would still be able to access my Hassio just using the Public Address if I want, and then the traffic will still be encrypted right
The certificate is for the domain you register not the IP address. So no.
If you have a static IP address you don’t need the DuckDNS service you just need Lets Encrypt (also an available addon).
I just checked and LetsEncrypt does not issue ip addressed for i addresses, only DNS names. You need the DuckDNS addon to get a uniquename.duckdns.com name for the certificate.
In order to use https without warnings, you need a certificate. It you just want to hit it with your public ip address you need a certificate with that ip address.
Providers usually provide certificates with DNS names. Very few will provide one with an ip address.
LetsEncrypt does not provide a certificate with an ip address as the subject.
You MAY be able to do it if you find a provider to sell you a certificate with your ip address as subject. You would likely need to prove you legitimately have the use of that address since it is owned my your ISP.
