TLS certificates for internal services done right

Other: DevOps & Infrastructure(tuxnet.dev)view on HackerNews
tlscertificatesinternal servicessplit-horizon dnswafacme protocolnetbirdacme.shnginx

Author: mrl5

Date: 7/9/2026

Article Summary:
A blog post explaining how to set up TLS certificates for internal services using split-horizon DNS, WAF, and ACME protocol, with a focus on using NetBird, acme.sh, and nginx.