ERR_SSL_WRONG_VERSION_NUMBER when running nextjs in docker cointainer with traefik

Tasilo · February 2, 2024, 10:31pm

The app shows 500 Internal server error on client, the log looks like this:

Error: fetch failed
    at context.fetch (/app/apps/webapp/.next/standalone/node_modules/.pnpm/next@14.0.2_@babel+core@7.23.2_react-dom@18.2.0_react@18.2.0_sass@1.66.1/node_modules/next/dist/server/web/sandbox/context.js:272:38)
    at Object.middleware_middleware [as handler] (/app/apps/webapp/.next/standalone/apps/webapp/.next/server/src/middleware.js:2253:15)
    at /app/apps/webapp/.next/standalone/apps/webapp/.next/server/src/middleware.js:1426:23
    at AsyncLocalStorage.run (node:async_hooks:346:14)
    at Object.wrap (/app/apps/webapp/.next/standalone/apps/webapp/.next/server/src/middleware.js:1238:24)
    at adapter (/app/apps/webapp/.next/standalone/apps/webapp/.next/server/src/middleware.js:1413:53)
    at process.processTicksAndRejections (node:internal/process/task_queues:95:5) {
  cause: [Error: D07B0FDCAAAA0000:error:0A00010B:SSL routines:ssl3_get_record:wrong version number:../deps/openssl/openssl/ssl/record/ssl3_record.c:354:
  ] {
    library: 'SSL routines',
    reason: 'wrong version number',
    code: 'ERR_SSL_WRONG_VERSION_NUMBER'
  }
}

The next app is built with option output: standalone; and run using node server.js command.
We use Next.js v13.

Docker compose file, that is used to run the app: docker_compose.yaml - Pastebin.com
traefik.yaml: traefik.yaml - Pastebin.com
Dockerfile: Dockerfile - Pastebin.com
note: app is built in CI pipeline, then the build output is copied into the image
app is using pnpm with turborepo monorepo
other containers that run on this VPS under traefik have no issues
traefik has no error logs

bluepuma77 · February 2, 2024, 10:51pm

Start by removing keyType: EC256, curvePreferences and cipherSuites to see if it works without.

Tasilo · February 4, 2024, 10:23pm

Unfortunately, the error still persists

bluepuma77 · February 5, 2024, 8:18am

You state you use Next13, but the error shows Next14.

Where is the error happening? On client or on server? Within Docker? Connecting to which service? Where is Traefik involved?

Set Traefik to log level debug (doc). If the TLS error happens with Traefik you will see it there.

Tasilo · February 6, 2024, 6:29pm

My mistake, I meant next 14, cant edit the post now.

Next server responds with 500, when the app is opened in a browser, the initial fetch fails.

All traefik logs relevant to the next app: traefik - Pastebin.com

bluepuma77 · February 6, 2024, 7:26pm

Check your browser developer tools network tab. See if you can load that target URL within the browser itself.

Topic		Replies	Views
Sporadic problem/error with middleware Traefik v2 docker , file	4	729	July 24, 2023
I keep getting bad cert Traefik v2 docker-swarm	0	418	November 23, 2019
ERR_ECH_FALLBACK_CERTIFICATE_INVALID errors Traefik v3 (latest) docker , tcp , udp	38	1679	November 12, 2024
TLS Handshake Error with Let's Encrypt Certificate via DNS Challenge Traefik v2 docker , letsencrypt-acme	2	2533	July 28, 2022
Intermittent SSL_PROTOCOL_ERROR Traefik v2 letsencrypt-acme , middleware	0	1681	January 19, 2022

ERR_SSL_WRONG_VERSION_NUMBER when running nextjs in docker cointainer with traefik

Related topics