Caddy Cheat Sheet

安装

sudo apt install -y debian-keyring debian-archive-keyring apt-transport-https
curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/gpg.key' | sudo gpg --dearmor -o /usr/share/keyrings/caddy-stable-archive-keyring.gpg
curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/debian.deb.txt' | sudo tee /etc/apt/sources.list.d/caddy-stable.list
sudo apt update
sudo apt install caddy

默认安装后启动,检查状态:

systemctl status caddy

配置

Caddyfile

通常位于 /etc/caddy/Caddyfile~/.config/caddy/Caddyfile

快速反代

example.com {
    reverse_proxy localhost:9000
    tls internal
}

tls internal 表示使用 Caddy 自己的 CA 签发证书,适用于内部或测试环境。

如果你需要公共有效的 SSL 证书,去掉 tls internal 这一行。

Caddy 将自动使用 Let's Encrypt 为你的域名签发证书。

Caddy defaults to 443 for HTTPS.

In that case you will also need permission to bind to low ports.

sudo setcap cap_net_bind_service=+ep $(which caddy)