I like caddy find it way easier then dealing with certs myself
Get a domain name, point it to the machine that's running the node and the server. Then you can use tools like
https://github.com/niteshbalusu11/rustdress
Or
https://github.com/Dolu89/ligess
that run a lightning address server and talk to your node.
You'll have to use something like Nginx and Certbot for tls certificates and you'll see a ton of tutorials on Google for setting up that.