#Would you mind sharing your Traefik, HA

http:
  routers:
    ha-int:
      rule: "Host(`ha.INTERNALDOMAIN`)"
      entryPoints:
        - http
      middlewares:
        - chain-int-no-auth
      service: ha
    ha-ext:
      rule: "Host(`ha.EXTERNALDOMAIN`)"
      entryPoints:
        - https
      middlewares:
        - chain-ext-no-auth
      service: ha
      tls:
        certResolver: cloudflare
        options: tls-opts@file
  services:
    ha:
      loadBalancer:
        servers:
          - url: "http://HA-IP:8123/"

That's my traefik config for HA specifically..
But there's more "general" config necessary for it to work
Can follow this guide:
https://www.smarthomebeginner.com/traefik-docker-compose-guide-2022/

Do you actually need both the internal and external or is it just for you to be able to login from both the inside and the outside of your LAN?

Also, could you please share your HA config? I wonder about the SSL settings (I don't really see a point to enable those tbh since Caddy will be taking care of that for me), and the URLs I guess

Ohh you don't need both,, it's just the way I have it setup :P

And the HA config, I suppose only the http config is interesting:

http:
  # Enable parsing of the X-Forwarded-For header, passing on the client’s
  # correct IP address, since I'm using a proxied setup.
  use_x_forwarded_for: true

  # List of trusted proxies, consisting of IP addresses or networks,
  # that are allowed to set the X-Forwarded-For header.
  trusted_proxies:
    - !secret trusted_proxy_1

  # Enables additional IP filtering.
  ip_ban_enabled: true

  # Number of failed login attempts from a single IP after which it will
  # be automatically banned.
  login_attempts_threshold: 5

My Home Assistant does not use SSL, traefik takes care of that in my setup

Thanks!

No problem :)