No sure if we use the exact configuration.
I do use pfSense (with HAProxy), CF and have a dynamic external IP.
For DDNS I use one subdomain (CNAME) not related to any local service.
The other subdomains for the local services have their own CNAME record pointing to the DDNS CNAME.
i also have a similar kind of setup…
using pfsense, HAproxy and CF
HAproxy serves the same services on local network using VIP and on WAN using the external IP.
only change i can see as of now is that my root domain is attached to the DDNS service on the pfsense.
Now i have added CNAME entry for all services and their subdomains pointing to the root domain.
I hope this solves the issue. waiting for the CNAME changes to percolate.
but my real question was that, if in pfsense i have added a CF - DDNS for the root domain, would it not give the same IP address to all subdomains also by default.
but my real question was that, if in pfsense i have added a CF - DDNS for the root domain, would it not give the same IP address to all subdomains also by default.
Not in my case. I have to create CNAME records for all subdomains I run “behind” HAProxy and point them to the CF DDNS CNAME.
I’ve started using the wildcard in my DDNS so that way all services are covered. HAProxy in pfsense already takes care of the filtering and sending the users to the correct backend.
I do have a NoAccess backend to stop web crawlers for those don’t have the correct subdomain to access my services.
Have to use custom action in the backend for it to work: