The standard install gets a certificate from let’s encrypt. That requires a public ip. If you need the server not to be accessible from the public internet you’ll have to do some unsupported install, perhaps with a certificate that you obtain some other way or behind a reverse proxy that has a certificate. Running without a certificate isn’t really supported.
1 Like