Hi,
I'm trying to put traefik in front of an HTTPS web server using passthrough.
When exposed directly, the webserver works like a charm, but when I use traefik as a proxy, it times out.
Here is the config:
- "traefik.tcp.routers.mailuhttps.rule=HostSNI(`mx.leo-flaventin.com`) || HostSNI(`mailu.leo-flaventin.com`) || HostSNI(`autoconfig.mx.leo-flaventin.com`) || HostSNI(`autoconfig.mailu.leo-flaventin.com`) || HostSNI(`mta-sts.example.com`)"
- "traefik.tcp.routers.mailuhttps.entrypoints=websecure"
- "traefik.tcp.routers.mailuhttps.tls.passthrough=true"
- "traefik.tcp.routers.mailuhttps.service=mailuhttps"
- "traefik.tcp.services.mailuhttps.loadbalancer.server.port=443"
- "traefik.tcp.services.mailuhttps.loadbalancer.proxyProtocol.version=2"
Here the error :
traefik-traefik-1 | time="2023-08-19T08:10:58Z" level=debug msg="Handling TCP connection from 54.38.195.213:58180 to 172.30.0.2:443" │domains
traefik-traefik-1 | time="2023-08-19T08:12:57Z" level=error msg="Error while dialing backend: dial tcp 172.30.0.2:443: connect: connection timed out"
Note that 172.30.0.2:443 is the right ip address of the web service, in the same network as traefik (btw, it works in HTTP even if I did not list the config here).
Using openssl client on the webservice container's ip works (handshake works, and we get to nginx), but timeout out on the public ip (simply no response from the webservice)
Any idea ?
Thanks in advance !