← Back to projects

Internal DNS and Reverse Proxy Design

Active since 2025

Designing human-friendly internal DNS and reverse proxy patterns for private services.

Caddy Traefik DNS TLS Cloudflare

Overview

This project focused on replacing raw IP addresses and self-signed certificates with clean DNS names and trusted TLS for internal services.

What I built

Internal DNS naming model
Split-DNS strategy for internal vs external access
DNS-01 automation for certificate issuance
Reverse proxy patterns for service exposure

Design goals

Human-friendly URLs
Trusted certificates everywhere
Minimal manual certificate management
Clear separation between internal and external access

Why it matters

Names, certificates, and access patterns are part of user experience. Good infrastructure should feel natural to use, not technical to survive.

Related projects

All projects →

Caddy, TLS, and DNS-01

Moving from self-signed certs to trusted, human-friendly URLs.

security certificates dns

Network Segmentation & Migration

Segmenting user, IoT, management, and work devices.

networking segmentation security

Homelab VLAN Consolidation and Security Model

Redesigning a multi-VLAN homelab to balance isolation, usability, and performance.

security networking segmentation