Hello,
I was trying to get Vaultwarden working back on my new server. I had to use insecure skip verify because of the self-signed cert.
If I add tls:
insecureSkipVerify: true
anywhere in makes my traefik default back to 3 routes, middlewares, and services. If i take that line back out no issues...tried making a middleware. Only thing that works is servers transport in my global setting for all services...
serversTransport:
insecureSkipVerify: true
http:
routers:
vaultwarden-rtr:
rule: "Host(vaultwarden.XXXXXXX.com
)"
entryPoints:
- websecure
middlewares:
- chain-no-auth
service: vaultwarden-svc
tls:
certResolver: myresolver
options: tls-opts
services:
vaultwarden-svc:
loadBalancer:
servers:
- url: "https://192.168.XXX.XXX:8001"
tls:
insecureSkipVerify: true
global:
checkNewVersion: true
sendAnonymousUsage: false
api:
dashboard: true
insecure: true # Disable in production
entryPoints:
web:
address: ":80"
http:
redirections:
entryPoint:
to: websecure
scheme: https
websecure:
address: ":443"
http:
tls:
certResolver: myresolver
providers:
file:
directory: /etc/traefik/conf.d/
watch: true
certificatesResolvers:
myresolver:
acme:
email: "whatever@gmail.com"
storage: /etc/traefik/acme.json
dnsChallenge:
provider: cloudflare
log:
filePath: /var/log/traefik/traefik.log
format: json
level: INFO
accessLog:
filePath: /var/log/traefik/traefik-access.log
format: json
filters:
statusCodes:
- "200"
- "400-599"
retryAttempts: true
minDuration: "10ms"
bufferingSize: 0
fields:
headers:
defaultMode: drop
names:
User-Agent: keep