Skip to content

ops: HTTPS/TLS termination for RPC (Caddy/nginx templates) #218

New issue
New issue
Open
Open
ops: HTTPS/TLS termination for RPC (Caddy/nginx templates)#218
@TheNewAutonomy

Description

@TheNewAutonomy
TheNewAutonomy
opened on Feb 14, 2026

Goal

Run RPC over HTTPS for public testnets without changing consensus/P2P.

Scope

  • Recommend TLS termination (Caddy or nginx) in front of the node RPC
  • Provide example configs for:
    • rpc.address = "127.0.0.1" + reverse proxy on :443
    • optional wss:// for service bus/websocket if exposed
  • Document firewall rules + IP allowlisting
  • Include systemd unit examples and restart workflow after upgrades

Acceptance criteria

  • Operator can deploy EU RPC as https://rpc.<domain> with a valid cert
  • Node can run without exposing plain HTTP publicly

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions