Hi all. I’m trying to use a Reolink Doorbell, integrated with my docker install of HA. I’m trying to get two-way audio working and I do have it working when I’m on a HTTPS connection, as it is intended. The issue is, I’m trying to use HTTPS on the local address as well. I had success using self signed certificates (and adding them to the configuration.yaml file) and adding the CA perm file to my android phone but at this point, the external HTTPS connection stops working. I’m currently using caddy as a reverse proxy to manage my external connection. When trying to access the external domain I get an EOF error in caddy. I guess it’s a certificate error?
What should I do?
You are making mess with self signed and special cert on devices. Too complicated and breaks if not on “your” device
Caddy does cert for you. Just set this up and use locally.
I have domain for external use and separate domain for internal. This is completely unnecessary.
My router forwards all request for internal domain to caddy proxy. Request never leave lan.
You can use same domain external and internal and it will work same.
EOF may be firewall issue.
You router doesn’t allow nat( I forget term but it’s when internal connection leaves router then tries to reenter). What I do above prevents this since request stays in lan
Vlan may also cause this. Firewall blocking connection
Or docker if you use this. Docker network may be blocking somehow.
Fix 502 error and you’ll be OK
Thank you for this answer. I figured I might use caddy for internal connections, but I was unsure in how to do it. In the end, I entered my main domain as a Caddyfile entry, then reverse proxy to the HA instance. Then in the router DNS config I added the domain pointing to the server on which caddy is running. Does this seem the correct way to you? How can I verify it is indeed a 100% LAN connection?
Thanks!
I use linux for main PC.
dig mydomain.com will show the IP for the domain retrieved from DNS.
not sure what to do for windows or mac
another way is disconnect router from internet.
If your domain is still reached you can at least presume it routing to local when internet is out.