HTTPS ceritificates

Hi

I have for some time been using Homeassistant with DuckDNS addon to create a DNS and certificates to access my server away from my network but using HTTPS.

This way I could access my Homeassistant instance in a safe way but not my other network equipment. I’m now restarting my whole network and computer setup (because of a fire incident where all old equipment were lost).

So far I have my CAP ax that I use as a router and accesspoint. I have a TERRAMASTER F4-424 Pro comming in the next days that will serve as NAS server, Minecraft server and maybe even Homeassistant instance, all using casaOS or similar.

But now for my question, how can I best setup DNS and HTTPS certificates that can be used by my F4-424 Pro, is there any point doing it on my mikrotik device or is it better to do it on the server?

I would perfectly happen using the DNS that mikrotik creates using the “cloud option”, and I can use the letsencrypt option on mikrotik to generate certificates and renew them, https://www.youtube.com/watch?v=T1Dyg4_caa4, but how can I share these with the server so that it can use the same certificates?

There must be a “best practice” in this type of scenarios?

Yes although capable you would be much better off getting something like a hex refresh router, not expensive to use as your router.
Then you can use Wireguard ( BTH variant, if you dont have access to a public IP) and you and others can access the resources on your LAN behind a VPN, safely!!
Another option would be to use Zerotier to do something similar.

Let me be clear, I do not need a vpn, wireguard or similar, I need to setup HTTPS for other reasons than just me being able to access my server.

So what would be best way to create those certificates so that they can be shared between mikrotik and server, or just ignore mikrotik and create for the server?

I would recommend you something light and easy to setup like a caddy container (which uses letsencrypt certificates)