You can use Cloudflare tunnels to avoid opening any ports on your router and also to not worry about your public IP changing (most people don't have fixed IP).
2 Years late to this party but you've helped me setup an immich server so I don't have to pay Google $10 a month to store more than 200GB of data. Now I can store 3TB worth of data for photos and be good for a while. I thank you sir.
Even though this video is 2 years old, still works perfectly. Was going round in a circle trying to watch several different videos to setup different aspects. Amazing to see one streamlined video stringing it all together! Perfect results first time round.
Genius dude. I have spent over 12 hours trying to get a reverse proxy working with Caddy, docker containers and all this other shit. Here we are, clear as mud. Thanks man.
DUDE. I have been going 'round and 'round with this. I've watched about half a dozen videos, studied at least the same number of articles, and this is the first time I've got it working. And it was so easy. I was WAY over complicating this. At least I know a lot more about apache/cloudflare/docker/nginx than I'd ever thought I'd know. Thanks for allowing me to get back to having fun in the homelab again. Keep up the good work!!
Same here xD Still stuck at the end, currently trying to assign nat ports to continue following up on this guide.. Got a wordpress installation on a local webserver using Nginx, which I've already setup to be powered by cloudflare, got all the ssl certs and stuff completed, just need to get around the dns I guess xD Thank god for people like Chuck !
@@Than3Dane I've been stuck with nginx on a 403 error. Got the initial nginx page, but when i directed it to the index file, it 403s now. XD Love this video tho, I have made more progress each time I sit down on this project.
Dude you are CONSISTENTLY the BEST teacher for Networking and providing very simple visual guides on how to set up projects. I finally got a website online thanks to your tutorials and can't say thank you enough. You are the man.
Awesome. Been spun around in circles over this. Ended up have an obtuse issue with the add-on in home assistant. Wipe the DB, reinstalled...started with wildcard cert with DNS challenge first before adding proxy hosts...works like a champ
Thanks for explaining this in detail! My server has been running Nginx Proxy Manager for 3 ish years but recently it stopped working and I was struggling with the reinstallation process. This helped me re-do my SSL setup!
I seriously felt that cut to screaming into the pillow. That was my experience trying to get this all set up before I found your video, it helped a ton!
Thank you so much for this video! I was losing my mind trying to get NPM + Certbot to work in unraid. Setting my domains up in Cloudflare was the ticket. Thanks again!
Great Video, but worth mentioning that some residential ISPs will block traffic on port 80, which can make getting a Let’s Encrypt cert difficult. You can still get around it by hosting the Nginx proxy in the cloud and having it proxy to other ports on your home network.
Cloudflared ( Argo Tunnels) ,or Ngrok. I've also heard of Inlets, but I haven't been able to test it. They're like a wormhole. The visitors hit the edge (Cloudflare servers) and see your site without having to open ports.
First of all, thank you for the video. You have put together a topic that I have been researching for a while, , very well. I think a top of this can be done using Cloudflare Tunnel. Thus, it becomes appealing to those using CGNAT or Dynamic IP addresses. Thanks again, have a nice day ^_^
Perfect video, by far the best I have found! I'm having a lot of fun with my homelab thanks to great teachers like you. Greetings from the Netherlands!
Fantastic video! Thank you so much! The only thing I did on my config was use Zero Trust Tunneling from Cloud Flare instead of opening ports on my router. (I'm just paranoid. I'm sure this is safe, too. Just you know, overkill is underrated. ) Also Fun fact, this was the only way I could find that wasn't a giant pain to get an SSL secured Wordpress install self hosted. Great work! Thank you again so much. Fantastic content. I have been binging all your stuff!
@Michael-rq8zj Hey man, sure so RaidOwl actually has a video on this. I used this to do most of it. There was some wordpress specific stuff that I had to do. If you're specifically looking into that I can look for my notes. LMK. ruclips.net/video/hrwoKO7LMzk/видео.html
thank you! i was struggling with this for a little bit but your video was great. had watched a few other videos and read a few random forums but didnt have any luck until i saw this :) not the first time your videos have helped me/taught me something!
Amazing. This got me where I wanted. Goal: Running proxmox server with an ubuntu server VM (wondering if I should just run ubuntu server, but guess I can learn proxmox and ubuntu together). Have some docker containers running in the ubuntu server and wanted to get them on the entire internet. This get you there! Feels good.
This is basically how I set up my website. It's served from a raspberry pi and instead of running nginx I ran certbot on the pi. I needed to stop proxying my ip for a minute for certbot to work but it works. I have the lowest power web server on earth. For a site that isn't maintained and no one goes to.
Great video. I think when you activate the option "Always use https" on Cloudflare 14:01, you ask cloudflare to redirect any request coming to http 80 to 443 https. Then I don't find any reason why you would open the port 80 on your firewall 6:41
Thank you so much for the video, your channel has been a huge help for me getting into self hosting and developing my tiny homelab! Which hopefully will grow with time! 😆
WOW, thanks man for this simple tutorial, damn I was trying to do this for a few days now, finally i got your video. Thank you for your work, it was so simple to setup. Thank you once again and regards.
Cloudflare tunnels can technically see all the traffic you’re tunneling through, including any self hosted media (which i believe is technically not allowed in their T&Cs). Using Cloudflare only for SSL keeps everything local
Cloudflare tunnel is managed thru their dashboard and limited by free tier restrictions. Some services also just plain don’t work thru Tunnel + requires functioning vpn thru cloudflare on client devices
@@hujake5406if you don't pay for the full service you're limited to file sizes of 150mb through the tunnel. Also, why host your own stuff if you're just going to open it up for a third party to have unencrypted access to it in transfer?
One of the whole points of using cloudflare is to circumvent the need to reconfigure your router. I dont have access to my router; its shared in a small community and controlled by one individual landlord. I was turned onto cloudflare as a means of tunneling through and allowing external connections to my computer, without having to set any port forwarding in the router. Hiding my IP from people was never my intention in using cloudflare
Look into implementing all your SSL's from CF using their "Origin" Certs into the Reverse PM, it will change your life. You will get a 15 year SSL cert that you don't have to worry about replacing in your Reverse PM for at least 15 years.
Super helpful. Thanks very much! Even though my ISP blocks port 80 (we can't be hosting any web sites now, right?), this worked perfectly. Much appreciated!
Great video, however can I ask how can I input the IPv4 Address in Cloudflare A record if my IPv4 public address is a dynamic one ? Is it required to replaced with a DDNS name instead ? And how to set it up ? Looking forward to hearing from you soon. Thank you.
You got me when you said... "show it off to all your friends and yeah" here's my friend RabbitMQ... Totally worth a new sub! Thanks for the video, great work summarizing what could usually be a complex topic and still making it fun.
It's crazy how fast this tech moves. This video was great but cloudflare tunnels removes the need to open ports on the router or forward ports (or even open ports in docker 👀).
First of all, thank you. I just wanted to ask. I use the zero trust tunnel, where clearly there is no need to open any ports on the router. From your experience, in all sincerity, what do you think is the best solution between video and one (or more) zero trust tunnels? I really thank you. Videos always at the top! 🤙
6:34 Sweet. I like when people know their audience- like ya I know how to figure out port forwarding on my router/windows/modem, but I have no clue where to start with spinning up my files to (safely) be accessible from the web. You know exactly what kind of people are here. Top comment is a useful addition as well- that port 80 comment. Very nice community here. Here, take my like and my sub. Have a nice day. :)
Great video!! I currently use Google domains with Dynamic DNS because I don’t have a static IP address. Is there a way to do this with dynamic DNS and use a CNAME instead?
Well ok to punch a whole in to the firewall of router but what about the man in the middle attack or some how someone knows the public IP? Is it better to have in docker a tunnel connected to the cloudflare (also better for people like me with random public IP for every restart of the router) then in the dashboard create the link with auto SSL wildcard certificate to point to the nginx and then to the server with SSL from the nginx?
great video even 2 years ! my doubt is the ip in my home chance after someone days(not static ip) and this tutorial mean "set your public ip in cloudflare configuration....", so this is a problem if my home ip is not static ?
One biggest problem with using port 80 and 443 is isp provider blocks those on customers for homes and requires us to use business plan costs more .... So workaround is port forwarding in router to different ports it really aucks
![Twenty One Pilots - The Line (from Arcane Season 2) [Official Audio]](http://i.ytimg.com/vi/XCz7WUotXs8/mqdefault.jpg)
Thank you for the thorough explanation & step by step. Even 2 years later, this video is still helping others (like myself!). Appreciate the tutorial!
You can use Cloudflare tunnels to avoid opening any ports on your router and also to not worry about your public IP changing (most people don't have fixed IP).
2 Years late to this party but you've helped me setup an immich server so I don't have to pay Google $10 a month to store more than 200GB of data. Now I can store 3TB worth of data for photos and be good for a while. I thank you sir.
Even though this video is 2 years old, still works perfectly. Was going round in a circle trying to watch several different videos to setup different aspects. Amazing to see one streamlined video stringing it all together!
Perfect results first time round.
Genius dude. I have spent over 12 hours trying to get a reverse proxy working with Caddy, docker containers and all this other shit. Here we are, clear as mud. Thanks man.
DUDE. I have been going 'round and 'round with this. I've watched about half a dozen videos, studied at least the same number of articles, and this is the first time I've got it working. And it was so easy. I was WAY over complicating this. At least I know a lot more about apache/cloudflare/docker/nginx than I'd ever thought I'd know.
Thanks for allowing me to get back to having fun in the homelab again. Keep up the good work!!
im in the homelab nightmare stage xD
Same here xD Still stuck at the end, currently trying to assign nat ports to continue following up on this guide.. Got a wordpress installation on a local webserver using Nginx, which I've already setup to be powered by cloudflare, got all the ssl certs and stuff completed, just need to get around the dns I guess xD
Thank god for people like Chuck !
@@Than3Dane I've been stuck with nginx on a 403 error. Got the initial nginx page, but when i directed it to the index file, it 403s now.
XD Love this video tho, I have made more progress each time I sit down on this project.
Literally same, this video saved me so much time
Same for me, i've been watching these videos for a week and tinkering around but with no luck, until this video!
Dude you are CONSISTENTLY the BEST teacher for Networking and providing very simple visual guides on how to set up projects. I finally got a website online thanks to your tutorials and can't say thank you enough. You are the man.
Dude, you just absolutely broke me out of my confusion over this entire process. THANK YOU!!!
Awesome. Been spun around in circles over this. Ended up have an obtuse issue with the add-on in home assistant. Wipe the DB, reinstalled...started with wildcard cert with DNS challenge first before adding proxy hosts...works like a champ
A year later lost my conf could not recall how to do this. Thanks again.
Bro had me from the jump. "You finally finished your website after countless months of Red Bull" A few moments later..."Hello, World." 🤣😂😂😂
Totally not speaking from my personal experiences there…lol
Ok - now I don’t feel so embarrassed knowing I wasn’t the only one who had that as their first webpage!! 😎
lmao same i was all in from the capri sun hanging in the mouth
bro got me at the "control freak" and "cheaper than Mr. Krabs" 😭😭
I tried watching a few videos but this one by far is the most straight forward and well explained. Thank you for your well made videos!
Thanks for explaining this in detail! My server has been running Nginx Proxy Manager for 3 ish years but recently it stopped working and I was struggling with the reinstallation process. This helped me re-do my SSL setup!
I seriously felt that cut to screaming into the pillow. That was my experience trying to get this all set up before I found your video, it helped a ton!
Thank you! I saw tutorials on doing this a lot of times and this one has been the only one that has worked as far!
thank you, ive been trying to set my server for about a week, tried other tutorials, with this one i was able to do what i wanted. thumbs up!!!!
This is, by far, the best tutorial I've seen on the topic. Thank you!
3 days and hours of pain and finally here we are with a working proxy
I have been struggling with this for days and finally I have been able to get it sorted. thank you soo much for your content
You are… the wind beneath my wings! Thank you so much for this video. Been trying to figure this out for a while now and you made it all make sense.
Thanks bud. Most tutorials dont cover the A record setup via cloudflare and is working first time. Cheers!
Thank you so much for this video! I was losing my mind trying to get NPM + Certbot to work in unraid. Setting my domains up in Cloudflare was the ticket. Thanks again!
Wow, congrats. For me this is the first tutorial that worked 100%.
This was so straight forward that I'm actually a little angry for the days I have been trying to get this to work on my own while stupid.
PERFECT. just what I was looking for. Trying it out on TrueNAS scale tomorrow. Thank you!
The take a breath followed by screaming into a pillow made me laugh way too hard. Great video.
Great Video, but worth mentioning that some residential ISPs will block traffic on port 80, which can make getting a Let’s Encrypt cert difficult. You can still get around it by hosting the Nginx proxy in the cloud and having it proxy to other ports on your home network.
Exactly! I faced this issue too. What do you say about duckdns?
Cloudflared ( Argo Tunnels) ,or Ngrok. I've also heard of Inlets, but I haven't been able to test it.
They're like a wormhole. The visitors hit the edge (Cloudflare servers) and see your site without having to open ports.
Namesheap Dynamic dns client
This is where cloudflare comes in!
First of all, thank you for the video. You have put together a topic that I have been researching for a while, , very well. I think a top of this can be done using Cloudflare Tunnel. Thus, it becomes appealing to those using CGNAT or Dynamic IP addresses. Thanks again, have a nice day ^_^
Easily the most clear and enjoyable explanation of this
I had watched a lot of videos on this subject, but this is the one that cleared up things for me. Thank you for this.. Just awesome!!!
Perfect video, by far the best I have found! I'm having a lot of fun with my homelab thanks to great teachers like you. Greetings from the Netherlands!
Been through multiple videos on how to get this setup, with no success until this tutorial. Great tutorial, thanks for helping me to get this working!
I was in the same boat...which is why I made it haha. Glad it helped you out!
Thank you for taking the time to make this video. It is easy to follow and entertaining.
Fantastic video! Thank you so much! The only thing I did on my config was use Zero Trust Tunneling from Cloud Flare instead of opening ports on my router. (I'm just paranoid. I'm sure this is safe, too. Just you know, overkill is underrated. )
Also Fun fact, this was the only way I could find that wasn't a giant pain to get an SSL secured Wordpress install self hosted. Great work! Thank you again so much. Fantastic content. I have been binging all your stuff!
Heck yeah man, glad you got it working!
May I ask how you did this using cloudflare tunneling?
@Michael-rq8zj
Hey man, sure so RaidOwl actually has a video on this. I used this to do most of it. There was some wordpress specific stuff that I had to do. If you're specifically looking into that I can look for my notes. LMK.
ruclips.net/video/hrwoKO7LMzk/видео.html
I watched a bunch of videos on how to this and your video was the most thorough and simplest to follow. Thanks!
The Cloudflare DNS API solved all the issues with my setup, thanks
thank you! i was struggling with this for a little bit but your video was great. had watched a few other videos and read a few random forums but didnt have any luck until i saw this :) not the first time your videos have helped me/taught me something!
13:48 I think the most important tip. This is how the redirects worked on my server. Great tutorial, thx.
I love you humor man and your tutorials are next to none!
This video was so helpful, I subscribed just for how useful it was and how easy to understand you made it. Thank you!
Fantastic tutorial! Your teaching style is perfect.
Amazing. This got me where I wanted.
Goal: Running proxmox server with an ubuntu server VM (wondering if I should just run ubuntu server, but guess I can learn proxmox and ubuntu together). Have some docker containers running in the ubuntu server and wanted to get them on the entire internet. This get you there! Feels good.
Incredibly well explained. So efficient and easy. Thank you!!
This video finally got everything working!!!!! thank you sooo much!!! saved me a ton of time and stress!!!
what are the pros and cons of this (nginx) versus cloudflared?
Thanks man. I am just starting my homelab and your video answered so many questions!
man, this is so far the most perfect solution out there to host nextcloud with https! subscribed! thank you man!
You’re King of the trees, drinking from cups. Not my chair, not my problem, that’s what I say.
Amazing video! Great coverage of all steps involved. This fixed EVERYTHING!
This is basically how I set up my website. It's served from a raspberry pi and instead of running nginx I ran certbot on the pi. I needed to stop proxying my ip for a minute for certbot to work but it works. I have the lowest power web server on earth. For a site that isn't maintained and no one goes to.
“For a site that ain’t man ganged and no one goes to” 😂
almost spat my drink out at the screaming in pillow scene.
Great video. I think when you activate the option "Always use https" on Cloudflare 14:01, you ask cloudflare to redirect any request coming to http 80 to 443 https. Then I don't find any reason why you would open the port 80 on your firewall 6:41
Good point!
his is great, I knew about everything you referenced just didn't know what steps to take. I subscribed!
Thank you so much for the video, your channel has been a huge help for me getting into self hosting and developing my tiny homelab! Which hopefully will grow with time! 😆
props to you Raid Owl you provided an excellent tutorial and I was able to get my system running using it have a great day. :)
7:56 lol mista balloons....mista balloon hands. Mista walkway! Mista walk down me. Who's chair is that?
Great video! You covered pretty much everything. From port forwarding to SSL. Thank you!
This just saved me a ton of reading! Thank you!
You're the best man! Finally got it working.
Heck yeah man!
you got a like just because of the introduction, that was amazing :D
Thank you so much for the easy tutorial. Worked super well!!
WOW, thanks man for this simple tutorial, damn I was trying to do this for a few days now, finally i got your video. Thank you for your work, it was so simple to setup. Thank you once again and regards.
Why would one not just use a cloudflare tunnel? are there advantages of using nginx as a reverse proxy and not cloudflare directly?
My man. please enlighten me if you have the answer
Cloudflare tunnels can technically see all the traffic you’re tunneling through, including any self hosted media (which i believe is technically not allowed in their T&Cs). Using Cloudflare only for SSL keeps everything local
Cloudflare tunnel is managed thru their dashboard and limited by free tier restrictions. Some services also just plain don’t work thru Tunnel + requires functioning vpn thru cloudflare on client devices
@@hujake5406if you don't pay for the full service you're limited to file sizes of 150mb through the tunnel. Also, why host your own stuff if you're just going to open it up for a third party to have unencrypted access to it in transfer?
Awesome. This Video helped me to get a subdomain working. Thanks a lot
One of the whole points of using cloudflare is to circumvent the need to reconfigure your router. I dont have access to my router; its shared in a small community and controlled by one individual landlord. I was turned onto cloudflare as a means of tunneling through and allowing external connections to my computer, without having to set any port forwarding in the router. Hiding my IP from people was never my intention in using cloudflare
Look into implementing all your SSL's from CF using their "Origin" Certs into the Reverse PM, it will change your life. You will get a 15 year SSL cert that you don't have to worry about replacing in your Reverse PM for at least 15 years.
This video is a god send. Keep up with the great content
Super helpful. Thanks very much! Even though my ISP blocks port 80 (we can't be hosting any web sites now, right?), this worked perfectly. Much appreciated!
Thanks owl! Perfect timing too as one of the use cases for my server is going to be hosting my website
You're welcome, Sean! Hope this guide works for ya.
Great, easy to follow video. Do you have a static ip? Would this work on a dynamic ip?
Great video, however can I ask how can I input the IPv4 Address in Cloudflare A record if my IPv4 public address is a dynamic one ?
Is it required to replaced with a DDNS name instead ? And how to set it up ?
Looking forward to hearing from you soon. Thank you.
I'm a real beginner with this, do you know how to set up Cloudflare tunnels to point to nginx?
This is great, thank you. How do you do you provide SSL certificates for local services that you don't want to expose to the world?
subscribed in 30 seconds this guy is hilarious
Yes, it helped a lot! Thank you for the easy explainations!!!!
You got me when you said... "show it off to all your friends and yeah" here's my friend RabbitMQ...
Totally worth a new sub! Thanks for the video, great work summarizing what could usually be a complex topic and still making it fun.
Haha he’s a great listener
@@RaidOwl indeed he is! But he's also a great broker, be careful who he exchanges your data with, he might sell your keys quicker than my ex did! lol
It's crazy how fast this tech moves.
This video was great but cloudflare tunnels removes the need to open ports on the router or forward ports (or even open ports in docker 👀).
Nah tunnels still have limitations on bandwidth and file size transfers.
Thanks for the video. Could you make some more videos about cloudflare settings? There are too many of them.
This was such a massive help thank you
There are several amazing one liners in this video, really making me laugh, great video
This was perfect. Also, drinking out of cups.
this might be a stupid question but is there a difference between this method and using cloudflare tunnels?
so basically we are still doing port forward and simply doing proxied in cloudflare so you get some more control.
For more privacy and full control Could we able to create our own DIY CDN Without the need of cloudflare?
First of all, thank you. I just wanted to ask. I use the zero trust tunnel, where clearly there is no need to open any ports on the router. From your experience, in all sincerity, what do you think is the best solution between video and one (or more) zero trust tunnels? I really thank you. Videos always at the top! 🤙
Great video this solved my exact problem I had. This was very well explained. Thanks!
6:34 Sweet. I like when people know their audience- like ya I know how to figure out port forwarding on my router/windows/modem, but I have no clue where to start with spinning up my files to (safely) be accessible from the web. You know exactly what kind of people are here. Top comment is a useful addition as well- that port 80 comment. Very nice community here. Here, take my like and my sub. Have a nice day. :)
Thanks so much for the kind words! 😊
Great video!! I currently use Google domains with Dynamic DNS because I don’t have a static IP address. Is there a way to do this with dynamic DNS and use a CNAME instead?
Well ok to punch a whole in to the firewall of router but what about the man in the middle attack or some how someone knows the public IP? Is it better to have in docker a tunnel connected to the cloudflare (also better for people like me with random public IP for every restart of the router) then in the dashboard create the link with auto SSL wildcard certificate to point to the nginx and then to the server with SSL from the nginx?
thanks for a guidelines. now time for more research
great video even 2 years ! my doubt is the ip in my home chance after someone days(not static ip) and this tutorial mean "set your public ip in cloudflare configuration....", so this is a problem if my home ip is not static ?
This really made my day. Thank you!
Nice video. Do you have any suggestions or advice for the 100MB upload limit? I have a Synology NAS and cloudflare limits uploads to 100MB.
absolutely wonderful! thank you!
sir, is this applicable for internet subscriptions with static public ip address?
How to manage non fixed public ip? Can you cover how to setup DDNS on Cloudflare?
Very nice! I imagine this won't work if your ISP blocks ports 80 and 443, right?
Correct
Mr. Walkway. Mr. 'walk down me, I'm the walkway'. Lead me to the building....
Great video dude. Not my chair. Not my problem.
Great works!!!! sei bravissimo, è un piacere seguirti!!!
One biggest problem with using port 80 and 443 is isp provider blocks those on customers for homes and requires us to use business plan costs more .... So workaround is port forwarding in router to different ports it really aucks
Found a work-around for TrueNAS Scale is to use Cloudflare tunnels without Nginx.