HTTPS inside LAN | New Version of HA iOS App

On your lan’s dns make your external domain name (eg point to the internal ip address of your HA server, (eg

Hi, my ISP’s router does not have that option. So will need to go either with a separate dns (pihole) or a separate router.

Use another DNS server…you can use HA’s addon…:thinking:

2 steps forward, 1 step back.
This works when I set this DNS on a PC
Then I get
dnsmasq[208]: query[A] from
dnsmasq[208]: config is
dnsmasq[208]: query[A] wpad.localdomain from

However, when setting this on a Iphone,Ipad it with IOS 14 it doesnt. Looks like its triggering DNS over HTTPS.
When I put the same URL that works from a PC in my Iphone I get entries in dnsmasq pointing to
]: cached is

So no local DNS call is performed…
Back to square I again.

Hi everyone,
there is a solution for the problem I described in my first post.

The solution is to use the NGINX Home Assistant SSL proxy plugin.

My HTTP configuration is the following.

  use_x_forwarded_for: true
  ip_ban_enabled: true
  login_attempts_threshold: 5

While my plugin’s configuration is:

certfile: fullchain.pem
keyfile: privkey.pem
hsts: max-age:31536000; includeSubDomains
cloudflare: false
	active: false
	default: nginx_proxy_default*.conf
	servers: nginx_proxy/*.conf

In this way, home assistant is listening HTTP port 8123 and HTTPS port 443 tanks to the plugin, so I use internal and external URLs. Of course, fullchain.pem and privkey.pem correspond to Let’s Encrypt’s certificates.

1 Like

using the combination of duckdns & nginx worked perfectly for me!

1 Like