Hi,
I just inherited a treafik proxy and since changing the certificate, I have the second url (for s302.toto.fr) which no longer works.
No use docker in the server.
In the logs of Treafik I get this:
msg="http: TLS handshake error from x.x.x.x:yyyyy: remote error: tls: unknown certificate"
I don't see access s302 in the access log.
The config of traefik.toml :
[global]
checkNewVersion = true
sendAnonymousUsage = false
[entryPoints]
[entryPoints.web-secure]
address = "10.93.231.201:443"
[entryPoints.internal]
address = ":8888"
[log]
level = "DEBUG"
filePath = "/var/log/traefik/traefik.log"
[accessLog]
filePath = "/var/log/traefik/traefik_access.log"
[api]
insecure = true
dashboard = true
[providers.file]
directory = "/etc/traefik/dynamic/"
watch = true
The config web-secure.toml :
[tls.stores]
[tls.stores.default]
[[tls.certificates]]
certFile = "/etc/traefik/certs/wildcard.fr.pem"
keyFile = "/etc/traefik/certs/wildcard.fr.key"
[tls.options]
[tls.options.default]
sniStrict = true
[http]
[http.routers]
[http.routers.router-minioa]
entryPoints = ["web-secure"]
rule = "Host(s301.toto.fr)"
service = "service-minioa"
tls = true
[http.routers.router-miniob]
entryPoints = ["web-secure"]
rule = "Host(s302.toto.fr)"
service = "service-miniob"
tls = true
[http.services]
[http.services.service-minioa.loadBalancer]
[[http.services.service-minioa.loadBalancer.servers]]
url = "http://s301.cloud.toto.fr:9000"
[[http.services.service-miniob.loadBalancer.servers]]
url = "http://s302.cloud.toto.fr:9000"
Any idea?
I don't yet master the traefik config.