#Configuring public share links onimmich.example.com for my internal Immich instance

Hello Immich community,

I’m running an external Ubuntu 22.04 server with HestiaCP that establishes a WireGuard tunnel into my home LAN (192.168.178.0/24). Inside that LAN, Immich is listening on 192.168.178.173:2283.

I already have a DNS A record for immich.example.com pointing to my external server, and TLS is set up there. What I’m unsure about is how to generate links like https://immich.home/share/<token> on my internal instance and have them work as https://immich.example.com/share/<token> for friends and family on the public Internet.

Could someone guide me on:

1. How to configure Immich (or a proxy) so that share links use the public domain (immich.example.com) instead of the internal hostname (immich.home).
2. Any necessary reverse‑proxy settings in HestiaCP/Nginx (or Apache) to forward /share/... requests over WireGuard to 192.168.178.173:2283.
3. Tips for handling TLS certificates and ensuring no internal IPs or hostnames leak in shared URLs.

Thanks in advance for your help!

:wave: Hey @river sail,

Thanks for reaching out to us. Please carefully read this message and follow the recommended actions. This will help us be more effective in our support effort and leave more time for building Immich .

References

• Container Logs: docker compose logs docs
• Container Status: docker ps -a docs
• Reverse Proxy: https://immich.app/docs/administration/reverse-proxy
• Code Formatting https://support.discord.com/hc/en-us/articles/210298617-Markdown-Text-101-Chat-Formatting-Bold-Italic-Underline#h_01GY0DAKGXDEHE263BCAYEGFJA

Checklist

I have...

1. :ballot_box_with_check: verified I'm on the latest release(note that mobile app releases may take some time).
2. :ballot_box_with_check: read applicable release notes.
3. :ballot_box_with_check: reviewed the FAQs for known issues.
4. :ballot_box_with_check: reviewed Github for known issues.
5. :ballot_box_with_check: tried accessing Immich via local ip (without a custom reverse proxy).
6. :ballot_box_with_check: uploaded the relevant information (see below).
7. :ballot_box_with_check: tried an incognito window, disabled extensions, cleared mobile app cache, logged out and back in, different browsers, etc. as applicable

(an item can be marked as "complete" by reacting with the appropriate number)

Information

In order to be able to effectively help you, we need you to provide clear information to show what the problem is. The exact details needed vary per case, but here is a list of things to consider:

• Your docker-compose.yml and .env files.
• Logs from all the containers and their status (see above).
• All the troubleshooting steps you've tried so far.
• Any recent changes you've made to Immich or your system.
• Details about your system (both software/OS and hardware).
• Details about your storage (filesystems, type of disks, output of commands like fdisk -l and df -h).
• The version of the Immich server, mobile app, and other relevant pieces.
• Any other information that you think might be relevant.

Please paste files and logs with proper code formatting, and especially avoid blurry screenshots.
Without the right information we can't work out what the problem is. Help us help you ;)

If this ticket can be closed you can use the /close command, and re-open it later if needed.

Successfully submitted, a tag has been added to inform contributors. :white_check_mark:

1. you can set the external domain in the admin seettings

2 and 3 are mostly on your own, not related to immich

https://my.immich.app/admin/system-settings?isOpen=server