Dedicated TLS certificate for termination on certain services

gnubie · August 24, 2020, 5:25pm

Hi,

I am running traefik v2.2.8 as my ingress in Kubernetes. In my traefik dynamic file, I have configured a default certificate:

tls:
  stores:
    default:
      defaultCertificate:
        certFile: “/etc/tls/example.com.crt“
        keyFile: “/etc/tls/example.com.key“

The default certificate mentioned above is a wildcard TLS certificate without SAN. Now, I have a use case where some services exposed via IngressRoute need to use their own TLS certificates for TLS termination in traefik that uses different FQDNs as well. For example:

Service A: api.example.com
Service B: gateway.example.com
Service C: hub.example.com

How can I assign a dedicated TLS certificate for the 3 services above? Please take note that they’re all using the “example.com” domain and the default TLS certificate is a wildcard TLS certificate already (*.example.com).

I would really appreciate it for any advise or tips you can share to me. Thank you very much in advance!

Kind regards,

GNUbie

Topic		Replies	Views
IngressRoute to use default certificate for certain host Traefik v2 kubernetes-crd	1	2058	November 28, 2019
Traefik - Custom TLS certificate Traefik v2 kubernetes-ingress	4	329	July 19, 2024
How to properly configure the default ssl cert Traefik v2 kubernetes-ingress	5	10827	January 23, 2020
Traefik serving default certificate while other certificate assigned Traefik v2 kubernetes-crd	3	2228	March 18, 2021
Setup TLS/SSL, need help Traefik v2 kubernetes-ingress	3	756	April 16, 2021

Dedicated TLS certificate for termination on certain services

Related topics