I’d start first with http to confirm that everything is working first and then work towards each desired step afterwards to help isolate where things might be getting stuck. My example above used http://hs-demo1.nethserver.lan to prove to myself that I could a)resolve the domain appropriately and b) that the reverse proxy was functional as implemented within NethServer. My next step in your case then would be to enable & verify the SSL component works internally. Finally I would then start working on the external DNS routing/https and firewall configuration.
I can’t tell you how many times I have been working on a project and had a problem come up that had nothing to do with NS and everything to do with how my own lab setup.