Redirection loop on setting route for traefik dashboard

Traefik Traefik v2 (latest)
1

Hello everybody,

I am using Traefik to manage routes passed to different docker-containers.

Now I'd like to access traefik only using a specific route (and as bonus I'd like to protect the dashboard using basic auth)

This is my container definition (Don't wonder: It's a hash interpreted by Foreman ENC to do a docker run):

traefik/traefik:
  image: traefik:v2.3
  ensure: present
  command: "/entrypoint.sh --log.level=DEBUG --api.insecure=false --providers.docker=true
    --providers.docker.exposedbydefault=false --entrypoints.web.address=:80 --entrypoints.web.http.redirections.entrypoint.to=websecure
    --entrypoints.web.http.redirections.entrypoint.scheme=https --entrypoints.websecure.address=:443
    --certificatesresolvers.myresolver.acme.tlschallenge=true --certificatesresolvers.myresolver.acme.email=postmaster@example.org
    --certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
  ports:
  - 80:80
  - 443:443
  expose:
  - 8080
  net:
  - web
  volumes:
  - "/var/run/docker.sock:/var/run/docker.sock:ro"
  - traefik-config:/etc/traefik
  - traefik-letsencrypt:/letsencrypt
  labels:
  - traefik.enable=true
  - traefik.http.routers.traefik.rule=Host\(\"fqdn.example.org\"\)
  - traefik.port=8080
  - traefik.docker.network=web
  - traefik.http.routers.traefik.entrypoints=websecure
  - traefik.http.routers.traefik.tls.certresolver=myresolver

If I now open https://fqdn.example.org, I get a redirection loop. What did I miss here?

Other routes registered like this still work fine.

2

Additional information:


time="2021-01-27T08:52:47Z" level=debug msg="vulcand/oxy/roundrobin/rr: begin ServeHttp on request" Request="{\"Method\":\"GET\",\"URL\":{\"Scheme\":\"\",\"Opaque\":\"\",\"User\":null,\"Host\":\"\",\"Path\":\"/\",\"RawPath\":\"\",\"ForceQuery\":false,\"RawQuery\":\"\",\"Fragment\":\"\",\"RawFragment\":\"\"},\"Proto\":\"HTTP/2.0\",\"ProtoMajor\":2,\"ProtoMinor\":0,\"Header\":{\"Accept\":[\"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\"],\"Accept-Encoding\":[\"gzip, deflate\"],\"Accept-Language\":[\"de-de\"],\"Upgrade-Insecure-Requests\":[\"1\"],\"User-Agent\":[\"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.2 Safari/605.1.15\"],\"X-Forwarded-Host\":[\"fqdn.example.org\"],\"X-Forwarded-Port\":[\"443\"],\"X-Forwarded-Proto\":[\"https\"],\"X-Forwarded-Server\":[\"465f7c63c6bd\"],\"X-Real-Ip\":[\"217.86.129.190\"]},\"ContentLength\":0,\"TransferEncoding\":null,\"Host\":\"fqdn.example.org\",\"Form\":null,\"PostForm\":null,\"MultipartForm\":null,\"Trailer\":null,\"RemoteAddr\":\"217.86.129.190:49614\",\"RequestURI\":\"/\",\"TLS\":null}"
time="2021-01-27T08:52:47Z" level=debug msg="vulcand/oxy/roundrobin/rr: Forwarding this request to URL" Request="{\"Method\":\"GET\",\"URL\":{\"Scheme\":\"\",\"Opaque\":\"\",\"User\":null,\"Host\":\"\",\"Path\":\"/\",\"RawPath\":\"\",\"ForceQuery\":false,\"RawQuery\":\"\",\"Fragment\":\"\",\"RawFragment\":\"\"},\"Proto\":\"HTTP/2.0\",\"ProtoMajor\":2,\"ProtoMinor\":0,\"Header\":{\"Accept\":[\"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\"],\"Accept-Encoding\":[\"gzip, deflate\"],\"Accept-Language\":[\"de-de\"],\"Upgrade-Insecure-Requests\":[\"1\"],\"User-Agent\":[\"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.2 Safari/605.1.15\"],\"X-Forwarded-Host\":[\"fqdn.example.org\"],\"X-Forwarded-Port\":[\"443\"],\"X-Forwarded-Proto\":[\"https\"],\"X-Forwarded-Server\":[\"465f7c63c6bd\"],\"X-Real-Ip\":[\"217.86.129.190\"]},\"ContentLength\":0,\"TransferEncoding\":null,\"Host\":\"fqdn.example.org\",\"Form\":null,\"PostForm\":null,\"MultipartForm\":null,\"Trailer\":null,\"RemoteAddr\":\"217.86.129.190:49614\",\"RequestURI\":\"/\",\"TLS\":null}" ForwardURL="http://172.23.0.2:80"
time="2021-01-27T08:52:47Z" level=debug msg="vulcand/oxy/roundrobin/rr: completed ServeHttp on request" Request="{\"Method\":\"GET\",\"URL\":{\"Scheme\":\"\",\"Opaque\":\"\",\"User\":null,\"Host\":\"\",\"Path\":\"/\",\"RawPath\":\"\",\"ForceQuery\":false,\"RawQuery\":\"\",\"Fragment\":\"\",\"RawFragment\":\"\"},\"Proto\":\"HTTP/2.0\",\"ProtoMajor\":2,\"ProtoMinor\":0,\"Header\":{\"Accept\":[\"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\"],\"Accept-Encoding\":[\"gzip, deflate\"],\"Accept-Language\":[\"de-de\"],\"Upgrade-Insecure-Requests\":[\"1\"],\"User-Agent\":[\"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.2 Safari/605.1.15\"],\"X-Forwarded-Host\":[\"fqdn.example.org\"],\"X-Forwarded-Port\":[\"443\"],\"X-Forwarded-Proto\":[\"https\"],\"X-Forwarded-Server\":[\"465f7c63c6bd\"],\"X-Real-Ip\":[\"217.86.129.190\"]},\"ContentLength\":0,\"TransferEncoding\":null,\"Host\":\"fqdn.example.org\",\"Form\":null,\"PostForm\":null,\"MultipartForm\":null,\"Trailer\":null,\"RemoteAddr\":\"217.86.129.190:49614\",\"RequestURI\":\"/\",\"TLS\":null}"

This is the log output showing the GET request for fqdn.example.org. What can I do to get more information (something like a debug mode)?