How to Secure XAMPP with HTTPS for Public Access (Cloudflare + Port Forwarding)

A.H.Raihan Blog
A.H.Raihan Blog
December 19, 2025
0

Setting up XAMPP for local development is easy, but making it publicly accessible over a secure HTTPS connection with a custom domain requires a specific configuration.



In this guide, we’ll walk through how to use Cloudflare, Port Forwarding, and Self-Signed Certificates to get that green padlock on your local server.

The Strategy

We are using Cloudflare's "Full" SSL Mode. This means:

  1. Browser to Cloudflare: Secured by Cloudflare’s trusted certificate.

  2. Cloudflare to Your PC: Secured by a self-signed certificate you create on your machine.

Step 1: Generate your SSL Certificate

You need a certificate that matches your public domain.

  1. Navigate to your Apache folder (e.g., D:\server\apache).

  2. Create a folder named cert and a subfolder for your domain:

    C:\xampp\apache\cert\dev.mydomain.com

  3. Use OpenSSL (included with XAMPP) to generate your server.crt and server.key files.

    Note: Ensure the "Common Name" (CN) matches dev.mydomain.com.

Step 2: Configure Apache Virtual Hosts

This tells XAMPP how to handle incoming requests for your domain and where to find the SSL files.

Open D:\server\apache\conf\extra\httpd-vhosts.conf and add the following:

Apache
<VirtualHost *:80>
    DocumentRoot "C:/xampp/htdocs/your_project"
    ServerName dev.mydomain.com
</VirtualHost>

<VirtualHost *:443>
    DocumentRoot "C:/xampp/htdocs/your_project"
    ServerName dev.mydomain.com
    
    SSLEngine on
    # Crucial: Use forward slashes (/) even on Windows!
    SSLCertificateFile "C:/xampp/apache/cert/dev.mydomain.com/server.crt"
    SSLCertificateKeyFile "C:/xampp/apache/cert/dev.mydomain.com/server.key"
</VirtualHost>

Step 3: Open the Gates (Port Forwarding)

For the world (and Cloudflare) to see your server, you must open ports on your router.

  1. Log into your router admin panel.

  2. Find Port Forwarding.

  3. Forward Port 80 (HTTP) and Port 443 (HTTPS) to your computer’s local IP address (e.g., 192.168.1.15).

Step 4: Cloudflare Setup

This is the "magic" step that provides a valid SSL to your users.

  1. DNS: In Cloudflare, add an A Record for dev. Point it to your Public IP. Ensure the Proxy Status is Orange (Proxied).

  2. SSL/TLS: Go to the SSL/TLS tab in Cloudflare and set the encryption mode to Full.

    • Why Full? This tells Cloudflare to encrypt the connection to your home server even if your local certificate is self-signed.

Step 5: Troubleshooting "Apache Shutdown"

If Apache crashes after these steps, check the following:

  • Slashes: Ensure paths in httpd-vhosts.conf use / and not \.

  • Port 443 Conflict: Ensure programs like Skype or VMware aren't already using port 443.

  • Missing Files: Double-check that server.crt actually exists in the path you specified.

Conclusion

You now have a production-like environment running right off your local machine! Your site is accessible at https://dev.mydomain.com with a valid SSL certificate.


Tags
Share to other apps

You may like these posts

Show more

Post a Comment

0 Comments
Post a Comment (0)
To Top