An error with gitlab registry behind traefik

Traefik Traefik v2
1

Greetings!

I'm extremely new to traefik and I was hoping I could get some help on an issue I've been having. I'm putting traefik in from of a gitlab self hosted instance. And it's working fantastic with the exception of the container registry. If I bypass traefik and hit the registry using the ip address, I can pull images fine (as long as I set insecure registries). However, if I use the the FQDN (in this case registry.drake.rip) I get this error: Error response from daemon: Get "https://registry.drake.rip/v2/": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)

A couple things to note about my set up:

  1. I'm using the traefik binary on a linux server, it's not in a container. (traefik version 2.10.3 running on an ubuntu server)

  2. Gitlab is also running on a server and not in a container.

My traefik.yml file is as such:

# Static configuration

entryPoints:
  web:
    address: ":80"
    http:
      redirections:
        entryPoint:
          to: websecure
          scheme: https
  websecure:
    address: ":443"


certificatesResolvers:
    myresolver:
        acme:
            email: me@email.com
            storage: /etc/traefik/acme/acme.json
            dnsChallenge:
                provider: route53
                delayBeforeCheck: 0


accessLog:
  filePath: "/var/log/traefik/access.log"

log:
  filePath: "/var/log/traefik/traefik.log"
  level: DEBUG

providers:
   file:
      filename: /etc/traefik/all.yml
      watch: true

my all.yml file is as such:

http:
    routers:
        gitlabrouter:
            rule: "Host(`gitlab.drake.rip`)"
            service: gitlab
            tls:
              certResolver: myresolver
              options: tlsoptions

        registryrouter:
            rule: "Host(`registry.drake.rip`)"
            service: registry
            tls:
              certResolver: myresolver
              options: tlsoptions

    services:
        gitlab:
            loadBalancer:
                servers:
                  - url: "http://192.168.60.57/"
        registry:
            loadBalancer:
                servers:
                  - url: "http://192.168.60.57:5000/"


tls:
  options:
    tlsoptions:
      minVersion: VersionTLS12

The relevant parts of my gitloab.rb are here:

registry_external_url 'http://192.168.60.57'
### Settings used by GitLab application
gitlab_rails['registry_enabled'] = true
#gitlab_rails['registry_host'] = "192.168.60.57"
gitlab_rails['registry_port'] = "5000"
gitlab_rails['registry_path'] = "/var/opt/gitlab/gitlab-rails/shared/registry"
registry['registry_http_addr'] = "192.168.60.57:5000"
registry['debug_addr'] = "192.168.60.57:5001"
registry['enable'] = true

EDIT: Updated the registry port to be the same
As far as I can tell, there's nothing regarding an error in either traefik or gitlab.

Any help would be appreciated.

Thanks!

2

You are using two different ports (5005, 5000) for registry, is that on purpose?

3

Hello @bluepuma77 You are absolutely correct. Those were different points. I had been doing some testing and changed one of them. I've corrected that in the post above. Thanks for pointing that out. It still does not not solve my issue sadly.