From d364411a174e5d5422a7e84b6671b098d4be977d Mon Sep 17 00:00:00 2001 From: Monviech <79600909+Monviech@users.noreply.github.com> Date: Fri, 15 Mar 2024 11:55:11 +0100 Subject: [PATCH] Update caddy.rst Added additional attention of what this plugin does not support, and the alternatives (for example OPNWAF). --- source/manual/how-tos/caddy.rst | 2 ++ 1 file changed, 2 insertions(+) diff --git a/source/manual/how-tos/caddy.rst b/source/manual/how-tos/caddy.rst index 81af95e..7a0c871 100644 --- a/source/manual/how-tos/caddy.rst +++ b/source/manual/how-tos/caddy.rst @@ -55,6 +55,8 @@ FAQ * Port Forwards, NAT Reflection or Split Horizon DNS are not required. Only create Firewall rules that allows traffic to hit the ports that Caddy opens. That is 80 (optionally) and 443 (required). * Firewall rules to allow Caddy to reach Backend Servers are not required. OPNsense has a default rule that allows all traffic originating from it to be allowed. +.. Attention:: There is no TCP/UDP stream, load balancing and WAF (Web Application Firewall) support in this plugin. Caddy itself could support these features, but this plugin is focused on ease of configuration. For a business ready Reverse Proxy with WAF functionality, use OPNWAF. For TCP/UDP streaming, use either nginx or ha-proxy. + ==================== caddy: Configuration