I have a domain that requires HSTS preload. I want to self host a few things using that domain (and subdomains), like nextcloud, pihole, and vaultwarden. How much of an issue is HSTS preload going to be if I do that? Will I need to set up a wildcard cert for everything? Or will it just work™️ because it’s internal or traffic is through a VPN?
I can’t find much about this so any help would be appreciated!
There are specific TLD which are required at the DNS level to be served over HTTPS.
.devis an example. The browser will physically not load a.devdomain over anything but HTTPS.Yeah, I got that, but this is an internal system OP is discussing. DNS forwarder and VPN. Solved.