Hello everyone, is there a simple way to use both (Traefik's Lets Encrypt and Cloudflare's Google Trust) certs in Full mode and renew without a problem?
I had an issue where my lets encrypt cert expired because tls challenge failed due to cloudflare proxy.
Now I disabled proxy, got new lets encrypt cert and enabled cloudlare proxy again. Can I somehow automate this?
Thank you!
For sure. Use httpChallenge or dnsChallenge.
Hey @bluepuma77 thanks again, I'm using your template. Can you please tell me is it enough to add:
--certificatesresolvers.myresolver.acme.httpchallenge=true
--certificatesresolvers.myresolver.acme.httpchallenge.entrypoint=web
and delete:
--certificatesresolvers.myresolver.acme.tlschallenge=true
from
--api.dashboard=false
--log.level=INFO
#--log.filepath=/var/log/traefik.log
--accesslog=true
#--accesslog.filepath=/var/log/traefik-access.log
--providers.docker.network=mynet
--providers.docker.exposedByDefault=false
--entrypoints.web.address=:80
--entrypoints.web.http.redirections.entrypoint.to=websecure
--entryPoints.web.http.redirections.entrypoint.scheme=https
--entrypoints.websecure.address=:443
--entryPoints.websecure.transport.respondingTimeouts.readTimeout=0
# remove next line when using Traefik v2
--entrypoints.websecure.asDefault=true
--entrypoints.websecure.http.tls.certresolver=myresolver
--certificatesresolvers.myresolver.acme.email=my@email.com
--certificatesresolvers.myresolver.acme.tlschallenge=true
--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json
Yes, that should be enough.
Thanks a lot man, you are always helpful!