Here is my setup:
I have multiple DuckDNS domains (and subdomains) pointing to my home IP. My home router has port 80 and port 443 forwarded to Nginx Proxy Manager on my home server. Nginx Proxy Manager points to the appropriate docker container and each one is encrypted with Let’s Encrypt.
Am I missing anything here or is this how I’m supposed to be doing it? Every app that has a DuckDNS url has a password in some shape or form.
You’re good in that there are no immediate problems with that setup. I run a largely similar setup, have run it for years, and have never had issues.
You can always add more security layers if desired, but from my personal experience and with my risk tolerance, I haven’t personally found it necessary.