I have a local certificate/keyfile from IONOS I want to use for my services.
docker-compose
version: "3.9"
services:
traefik:
container_name: traefik-dev
image: "traefik:latest"
restart: always
network_mode: bridge
ports:
- "80:80"
- "443:443"
- "8080:8080"
volumes:
- "/etc/localtime:/etc/localtime:ro"
- "/etc/timezone:/etc/timezone:ro"
- "/var/run/docker.sock:/var/run/docker.sock:ro"
- "/home/numark1/docker/data_traefik/logs/:/logs/"
- "/home/numark1/docker/data_traefik/traefik.yml:/etc/traefik/traefik.yml:ro"
- "/home/numark1/docker/data_traefik/dynamic.yml:/etc/traefik/dynamic.yml:ro"
- "/home/numark1/docker/data_traefik/certs/ddf2.crt:/certs/ddf2.crt:ro"
- "/home/numark1/docker/data_traefik/certs/ddf2.key:/certs/ddf2.key:ro"
My traefik.yml
providers:
docker: {}
file:
filename: "/etc/traefik/dynamic.yml"
watch: "true"
api:
insecure: "true"
entryPoints:
web:
address: ":80"
websecure:
address: ":443"
log:
level: "DEBUG"
filePath: "/logs/traefik.log"
My dynamic.yml
tls:
certificates:
- certFile: "/certs/ddf2.crt"
keyFile: "/certs/ddf2.key"
stores:
- default
stores:
default:
defaultCertificate:
certFile: "/certs/ddf2.crt"
keyFile: "/certs/ddf2.key"
Folder
root@docker:/home/numark1/docker/data_traefik# du -Scha
4.0K ./dynamic.yml
4.0K ./traefik.yml
4.0K ./certs/ddf2.crt
4.0K ./certs/ddf2.key
12K ./certs
356K ./logs/traefik.log
360K ./logs
12K .
384K total
Added labels for my service I want to expose via https
nginx_recipes:
image: nginx:mainline-alpine
restart: always
# ports:
# - 80:80
env_file:
- stack.env
depends_on:
- web_recipes
volumes:
- nginx_config:/etc/nginx/conf.d:ro
- staticfiles:/static:ro
- ./mediafiles:/media:ro
labels:
- traefik.enable=true
- traefik.http.routers.recipes.rule=Host(`recipes.ddf2.de`)
- traefik.http.routers.recipes.entrypoints=websecure
- traefik.http.routers.recipes.tls=true
- traefik.http.services.recipes.loadbalancer.server.port=80
I already learned that I need to reference certificates in dynamic.yml and not traefik.yml static file. But even then I get the traefik default or a gateway timeout 504 or 499. I dont get it, this is still way to complex for me.