Questions tagged [traefik]
59 questions
4
votes
2 answers
K3S: understanding the network model and applying TLS certificates
In order to learn a bit more about K8S I started running a single server/node K3S cluster as a home lab. But I believe I've reached an impasse on my understanding of the network model, maybe specific to K3S.
So far so good, except I wanted to apply…
Jo Colina
- 171
4
votes
0 answers
Adding a unique request header to hundreds of Ingresses with Traefik 2
we're (finally) migrating from Traefik 1 to 2. We run 400+ apps on GKE. Our one remaining challenge is this:
In Traefik 1 we set an annotation on each app's Ingress that adds a header to the request to the backend. The value of that header is unique…
Martijn Heemels
- 7,998
3
votes
2 answers
Is letsencrypt registration email address stored in certificate
I'm using letsencrypt in two ways: a docker stack using certbot, and another using traefik (which performs certificate management automatically, using lego). In both cases there's a setting for the registration email address.
Is that email address…
lonix
- 1,119
2
votes
0 answers
With a locally hosted Traefik proxy, what should my "trustedIPs" be for Authelia
I had a working docker stack with my home media server using a single docker compose file:
version: "3"
secrets:
authelia_jwt_secret:
file: $SECRETS_PATH/authelia/jwt_secret
authelia_session_secret:
file:…
Auspex
- 284
1
vote
0 answers
Traefik TCP Router for RDP, using TLS SNI for routing
Here's my setup:
I have several namespaces, and some of these contain pods that expose RDP ports.
Port 3389 is block by a firewall, so I have to use another port that maps to port 3389 on the pod.
Since this is a TCP connection, I…
Pooven
- 151
1
vote
0 answers
Wireguard client cannot access services running in a Docker Swarm (WG server on host)
I have a home lab, running Ubuntu 20.04 (Kernel v5.10) and on this server, I'm hosting Docker, a DNS Server (unbound), Wireguard, and a couple of web apps.
The Docker host is a Swarm cluster with 1 node and there are bunch of web apps running as…
Arca Artem
- 11
1
vote
0 answers
Traefik with FTPS , TLS offloading issue
i m trying to migrate from HAProxy to Traefik, i have an existing config of Haproxy that act as TCP loadbalancer for an FTPS server. now, i m trying to do that same with traefik.
The FPTS server Operate on the following port: 1413 for control and…
B.albert
- 11
1
vote
0 answers
Bad gateway return with k8s traefik ingress when firewalld is enable
Here is the definition of my problem.
I have a single node kubeadm cluster running on fedora cloud 40 VMs with vagrant.
I activated firewalld with this configuration:
kubernetes
sources: 10.0.0.0/8 172.16.0.0/12 192.168.100.0/24
public (default)
…
Manuel L.
- 11
1
vote
0 answers
Traefik, docker swarm and portainer. Serving robots.txt file
I'm playing around with my homelab and I'm trying to include robots.txt file.
I'm launching traefik and portainer using this docker_compose file. This is using Docker swarm mode
version: "3.3"
services:
traefik:
container_name: traefik
…
Adam Radomski
- 111
1
vote
0 answers
Traefik dashboard returns 404 page not found + TLS handshake error: remote error: tls: bad certificate (traefik + bind9 + CloudFlare + Let's Encrypt)
I configured Traefik in docker using the guide: Put Wildcard Certificates and SSL on EVERYTHING - Traefik Tutorial
But when trying to access the dashboard - I see an error: 404 Page not found
I have asked this question on several forums:
Docker…
Riven
- 11
1
vote
2 answers
NixOS - Let's Encrypt certificate is not recognized by Traefik (works in Nginx)
I am trying to run a demo Node.js app on a subdomain using Traefik reverse proxy. I am generating the wildcard Let's Encrypt certificate with the security.acme option. When I import the certificate in the Nginx config, it works correctly. However,…
protob
- 111
1
vote
1 answer
Multiple cors sites on Traefik
I'm using Traefik on my Ubuntu server. Cors works fine for one website but when I try to use it for two they seem to conflict. What is the correct syntax?
This is what I have in my docker-compose file:
Service 1:
-…
Joe Gatt
- 113
1
vote
1 answer
Traefik fails to obtain letsencrypt certificate for internal domain: DNS update failed: dns: bad signature
my goal is to be able to obtain certificates for "internal" domains using traefik. With "internal", I mean there is no public A record. For this reason, I won't be able to use the http challenge offered by letsencrypt. Therefore, I am trying to…
herrhannes
- 53
1
vote
1 answer
Default certificate does not work in traefik v2 and docker compose
I am trying to setup traefik as a container and I can't get my existing certificates to work. This worked when I had this defined in traefik_dynamic.toml but I can't get it working via the labels entry in the docker compose file.
My traefik.toml…
gctwnl
- 173
1
vote
2 answers
Serving ArgoCD behind Traefik in Kubernetes
I would like to run ArgoCD behind Traefik such that I can both access the ArgoCD web ui and interact with the API using the argocd command line tool.
I have deployed ArgoCD into a Kubernetes cluster from the upstream manifests.
I have deployed…
larsks
- 47,453