• 2 Posts
  • 16 Comments
Joined 8 months ago
cake
Cake day: March 19th, 2024

help-circle









  • AmbiguousProps@lemmy.todaytoSelfhosted@lemmy.worldHTTPS on homelab (just locally)
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    1
    ·
    edit-2
    5 months ago

    There’s a few ways, but for example you can use a service like cloudflared which comes with its own certs (and then set up WAF rules to only allow your IP), or you could set something up using let’s encrypt via reverse proxy (for example, using Opnsense and the let’s encrypt plugin which actually validates domains that aren’t otherwise exposed to the internet, there by giving you full blown validated SSL).

    If you don’t care about validation errors then you can use nginx reverse proxies (locally, not exposing any ports externally) and apply self-signed certs through the proxy regardless of whether or not the software allows SSL config.






  • Bluetooth can do it locally, but yes, for things on ZigBee or Z-Wave, it’s gotta have an antenna hub. WiFi switches and lights most likely do “phone-home” to the cloud in some way (usually for color or brightness control via app, Govee especially loves this). The down side, other than the obvious privacy implications, is that if your ISP has an outage, so do your switches.

    Home Assistant attempts to mitigate both the privacy and offline issues, while putting all of the different brands and hubs into one place.