How to Use Caddy as a Reverse Proxy

Caddy is a powerful and user-friendly web server. One of its features is its ability to act as a reverse proxy, seamlessly directing client requests to the appropriate backend servers while offering robust security and performance benefits.

To configure caddy as reverse proxy, add following to Caddyfile

vi /etc/caddy/Caddyfile

Add

serverok.in {
    reverse_proxy * 10.1.1.1:443 {
        transport http {
            tls
            tls_insecure_skip_verify
        }
    }
}

Restart Caddy

systemctl  restart caddy

In this case, all request for domain serverok.in will be proxied to backend server IP address 10.1.1.1 on port 443.

tls_insecure_skip_verify is to specify not to validate backend server SSL certificate to allow self signed SSL certificate.

To enable logging

serverok.in {
    reverse_proxy * 10.1.1.1:443 {
        transport http {
            tls
            tls_insecure_skip_verify
        }
    }
    log {
        output file /var/log/caddy/serverok.in.access.log
    }
}

This will save logs in JSON format.

If you need to allow multiple domains, separate them with comma.

serverok.in, www.serverok.in {
    reverse_proxy * 10.1.1.1:443 {
        transport http {
            tls
            tls_insecure_skip_verify
        }
    }
    log {
        output file /var/log/caddy/serverok.in.access.log
    }
}

To redirect www domain to non-www

www.serverok.in {
    redir https://serverok.in{uri}
}

Back to Caddy

Need help with Linux Server or WordPress? We can help!
Contact Us

Leave a Reply

Your email address will not be published. Required fields are marked *