I have read a few reddit and/or other forum-esque comments talking about nginx reverse proxy, but I haven’t found an “idiot’s” (me) way to deploy it (e.g. via turnkey linux as a LXC container template) or something along those lines.
Right now, the closest thing that I have gotten to it is by using the DNS server out of SLES12 SP4, where I am able to specify A records and SRV records (but I don’t think that the SRV records are working, to be honest), so I am using the A records with :9443
appended to the end of the local service domain name to get to the admin page, etc.
Still a little bit easier for the rest of my family to memorise a bunch of different IP addresses.
edit
When I read the IANA and BIND documentation, at least on the surface, it sounded like that since SRV records are supposed to be able to define port numbers and then you point it to a hostname or fully qualified domain name (FQDN) as the target, that I thought that you would be able to create the A record for the FQDN and then create the SRV record which points the port to the FQDN so that I would be able to “translate” “https://portainer.example.home:9443” to “https://admin.example.home”.
I don’t really know if it works that way because there aren’t a lot of great examples which shows it working the way I was thinking that it would work and from googling (a LOT lately), it also doesn’t sound like that very many network admins use SRV records, especially, given, that I have come to learn, web browsers don’t/can’t (really) handle/process SRV records. (Requires specific SRV record aware applications, with email (exchanges) being the most prominent example, but now there are the specific MX records for said email exchanges.
So, this is a part of the other reason why I haven’t really looked into something like an nginx reverse proxy.
Other people have commented about paying digital ocean ~$5/month for this service, but I assume that this is because they’re trying to get access to their systems from outside of their network, trying to find a way to get back in, whereas what I am trying to do resides exclusively on my LAN. (Nothing is opened to the outside world/internet.)
So those solutions weren’t something that I could adopt on my LAN.