diff --git a/README.md b/README.md
index 4197a1f..b1afce5 100644
--- a/README.md
+++ b/README.md
@@ -69,6 +69,7 @@ With reverse proxy configuration and redirects:
   vars:
     caddy_sites:
       - domain: example.com
+        tls_insecure: true
         routes:
           - path: ''
             reverse_proxy_destination: 192.168.50.2
diff --git a/molecule/reverse-proxy/converge.yml b/molecule/reverse-proxy/converge.yml
index 24843ed..09146bb 100644
--- a/molecule/reverse-proxy/converge.yml
+++ b/molecule/reverse-proxy/converge.yml
@@ -10,6 +10,7 @@
     caddy_sites:
       - domain: example.com
         default_response_code: 404
+        tls_insecure: false
         routes:
           - path: ''
             reverse_proxy_destination: 192.168.50.2
diff --git a/templates/Caddyfile.j2 b/templates/Caddyfile.j2
index 6b1fc84..03da651 100644
--- a/templates/Caddyfile.j2
+++ b/templates/Caddyfile.j2
@@ -47,10 +47,18 @@
   handle {{ route.path }} {
   {%- endif %}
     {%- if site.allowlist is defined and not (route.ignore_allowlist| default(false)) %}
-    reverse_proxy @allowlist {{ route.reverse_proxy_destination }}
+    reverse_proxy @allowlist {{ route.reverse_proxy_destination }}{%- if site.tls_insecure%} {
+      transport http {
+          tls_insecure_skip_verify
+      }
+    }{%- endif %}
     respond @not_allowlist 404
     {%- else %}
-    reverse_proxy {{ route.reverse_proxy_destination }}
+    reverse_proxy {{ route.reverse_proxy_destination }}{%- if site.tls_insecure%} {
+      transport http {
+          tls_insecure_skip_verify
+      }
+    }{%- endif %}
     {%- endif %}
   }
   {%- endfor %}