Hi
I’m not that advanced in networking, but perhaps someone here can point me in the right direction or inform me my efforts are fruitless.
I am running pfsense as a router/firewall, and I have a few services on the home lan I would like to expose (both http and https).
To keep things as standard as possible I have started using squid reverse proxy on the pfsense box using the standard package manager and GUI within pfsense, and I’m able to redirect incoming requests using subdomain mapping to local services (so https://nextcloudforme.duckdns.org would redirect to nextcloud on my LAN).
As I have only one public IP it would make things much easier to use a single DNS such as https://forme.duckdns.org and add subfolders for every service. So the example above would become https://forme.duckdns.org/nextcloud. As all local services have an individual IP address this seems rather straightforward in itself, but I haven’t found the magic sauce (yet?).
I kind of assume the trick lies within the squid reverse proxy mappings as the subdomain based example works, but so far no luck.
As pfsense-focused information on how to do this particular thing seems rather limited as well I’m starting to fear it might not even be possible.
If there is a guru here that can inform me where to look or how to achieve this I thank you in advance.
Also: if someone knows how SSL termination works exactly for these kind of set-ups (are public and local certificates used or not for https-to-https mappings?) that’s a bonus 
Thanks all
Sam