DNS

kasad.com uses Cloudflare to provide DNS resolution. Most traffic to the kasad.com server is not proxied through Cloudflare's network. Traffic using Cloudflare's Zero Trust network (meaning all SWAG endpoints) is proxied through the Cloudflare edge network.

To-do: document specific important DNS records

DNS as proof of ownership

A temporary DNS record is used to prove ownership of the kasad.com domain when obtaining TLS certificates from Let's Encrypt. Certbot, the program used to request new certificates, can do this automatically using a Cloudflare API key that has the Zone > DNS > Edit permission for the kasad.com zone.

Dynamic DNS

It is also possible to use the Cloudflare API to programmatically add/update DNS records. This means it's possible to create a dynamic DNS client script which can be used to provide DDNS records under the kasad.com domain.

Web App Overview

Automatic Start-up with systemd

Sending Emails from Web Apps

Permissions for Persistent Storage Volumes

Secure Web Application Gateway

Authentik - Identity & SSO Provider

Guacamole - Remote Access

BookStack - Personal wiki

Portainer - Container Manager

Bitwarden - Password Manager

Jellyfin - Media Streaming

VPN

Syncthing

SSH

Email

Postfix

Dovecot

DKIM Milter

[Superseded] Authelia - Authentication & SSO

Heimdall - App Launcher

Vikunja - Task Manager & To-Do List

Paperless - Document Management

Send - Temporary File Sharing

DNS

DNS as proof of ownership

Dynamic DNS

No Comments