Problem with certificate

Hedgehogues · June 24, 2020, 7:53am

Hello. I have a problem with certificate. I have two entrypoints with certificate, therefore I cannot use the [acme]. Look, I have next config:


logLevel = "DEBUG"

defaultEntryPoints = ["http", "https", "auth"]

[web]
# Port for the status page
address = ":8080"

# Entrypoints, http and https
[entryPoints]
  # http should be redirected to https
  [entryPoints.http]
    address = ":80"
    [entryPoints.http.redirect]
      entryPoint = "https"
  # https is the default
  [entryPoints.https]
    address = ":443"
    [entryPoints.https.tls]
     [[entryPoints.https.tls.certificates]]
       certFile = "/certs/l.f.p.cert"
       keyFile = "/certs/l.f.p.key"
 [entryPoints.auth]
   address = ":61295"
   [entryPoints.auth.tls]
    [[entryPoints.auth.tls.certificates]]
       certFile = "/certs/l.f.p.cert"
       keyFile = "/certs/l.f.p.key"



# [acme]
# email = "h@bk.ru"
# storageFile = "/etc/traefik/acme/acme.json"
# entryPoint = "https"


[docker]
endpoint = "unix:///var/run/docker.sock"
domain = "l.f.p"
watch = true
exposedbydefault = false

I generate the certificates this command and set all settings as default (with press button ENTER):

openssl req -new -newkey rsa:4096 -x509 -sha256 -days 365 -nodes -out learn.fless.pro.cert -keyout learn.fless.pro.key

I use docker-compose for deploying. I have next docker-compose:

reverse-proxy:
        image: traefik:1.7.24
        volumes:
            - /var/run/docker.sock:/var/run/docker.sock:ro
            - ./traefik/traefik.toml:/etc/traefik/traefik.toml:ro
            - ./traefik/certs/:/certs/
        networks:
            - web
        ports:
            - "80:80"
            - "443:443"
            - "61295:61295"
            - "41371:41371"
            - "51229:51229"
            - "50100:50100"
            - "37247:37247"
    grader-v2-auth-service-stage:
        env_file:
            - test.env
        image: "84.1.9.0:443/grader-v2-auth-service:1.1.1"
        restart: always
        networks:
            - web
        labels:
            - "traefik.enable=true"
            - "traefik.backend=grader-v2-auth-service-stage"
            - "traefik.frontend.rule=Host:a-s-s.f.p"
            - "traefik.port=61295"
            - "traefik.docker.network=web"

After starting docker-compose, I go to the a-s-s.f.p:61295 and I get next log into traefik:

reverse-proxy_1 | time="2020-06-24T07:52:48Z" level=debug msg="http: TLS handshake error from 109.252.101.42:2500: remote error: tls: unknown certificate"

https don't work

Topic		Replies	Views
HTTPS for Plex : Port TCP 32400 - HTTP Challenge Wrong certificate Traefik v2 docker , letsencrypt-acme	2	1388	April 28, 2023
Combine ACME let's encrypt https entrypoint with custom certificate entrypoint Traefik v2 letsencrypt-acme , middleware	11	2129	December 18, 2022
Unknown entrypoint for ACME configuration Traefik v1 docker , docker-swarm , letsencrypt-acme	3	1674	August 9, 2019
Setting up Traefik to require client side certificates with Let's Encrypt using CLI only Traefik v1 letsencrypt-acme	2	2219	July 6, 2019
Acme http challenge error with multiple traefik instances Traefik v1 docker , docker-swarm , letsencrypt-acme	1	1328	March 8, 2020

Problem with certificate

Related topics