Caddy with Auto-TLS on an Anubiz Offshore VPS
Caddy is the easiest production-grade web server you can put in front of your apps. It handles TLS via Let's Encrypt automatically, supports HTTP/3 out of the box, and the Caddyfile is the cleanest reverse proxy config in modern web. On an Anubiz VPS it replaces nginx for simple deploys. This guide covers Caddyfile patterns for typical Anubiz use cases: reverse proxy to an app on localhost, static site, basic auth admin endpoint.
Need this done for your project?
We implement, you ship. Async, documented, done in days.
Step 1: Install
Caddy official Ubuntu repo. apt install caddy. Systemd unit starts on boot.
Step 2: Caddyfile
/etc/caddy/Caddyfile: example.com {\n reverse_proxy localhost:3000\n header Strict-Transport-Security "max-age=31536000"\n}. caddy reload.
Step 3: HTTP/3
Add servers { protocols h1 h2 h3 } in global options. UDP/443 open in nftables.
Step 4: Basic Auth
example.com/admin/* { basicauth { luis <bcrypt-hash> } reverse_proxy localhost:3000 }. caddy hash-password generates the hash.
Step 5: Verify TLS
SSL Labs A+ default. Check HSTS, OCSP stapling automatic. Cert auto-renews 30 days before expiry.
Related Services
Why Anubiz Host
Ready to get started?
Skip the research. Tell us what you need, and we'll scope it, implement it, and hand it back — fully documented and production-ready.