Hi all,
Looking for some assistance getting set up with Bitwarden. I have a working installation on Ubuntu server. This is the full Bitwarden installation, not the RS one.
The server is not directly exposed to the internet so during the initial setup I opted to generate a self-signed cert to get up and running.
I am now trying to get HAProxy working in front of it to 1) reverse proxy from the internet using SSL from Let’s Encrypt and 2) access Bitwarden internally with HAProxy providing the SSL termination so I don’t get SSL errors etc. My installation of HAProxy is running certbot and holds my wildcard SSL certs and is the only machine listening on 80, and 433 on the internet.
To put it bluntly, I am failing miserably. There are quite a few pieces to the puzzle to make this work properly.
I do have an internal domain controller running DNS on Windows Server 2019, with the domain internal.domain.com
. So anything inside the network can be accessed via service.internal.domain.com
etc. Then outside the network, I use Cloudflare for my DNS and have some regular CNAME entries set up for service.domain.com
etc.
I am not expecting help with the DNS or HAProxy aspect, although if anyone has any advice they can offer that would be appreciated. I would however just like some advice on the best setup for Bitwarden to work properly for SSL both internally and externally in my environment. What are the best config settings to use in the config.yml etc.
Any advice would be greatly appreciated.
Thanks,
FS