[solved] Forwarding to a internal SSL Domain - How?

H-BLOGX · January 19, 2021, 1:55pm

Hello all,

I have Traefik 2.3.7 running on Docker Compose. I can reach all the services running on Docker Compose without any problems from the outside via https on port 443 of different domain names.

But now I also have services internally, which are not running as Docker containers, but e.g. on a LXC or a VM or on real metal.

Via my middleware.yml I have managed this with an http connection, but if I can access internally only via https, then the connection from external via Traefik is not forwarded.

Attached the content of my middleware.yml. Dokuwiki (internally via http and port 80) works fine, Proxmox (or others which run internally via https and port 443) does not work.

I get the failure: Internal Server Error

##START
tls:
  options:
    myTLSOptions:
       minVersion: VersionTLS12
       cipherSuites:
         - TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
         - TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
         - TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305
         - TLS_AES_128_GCM_SHA256
         - TLS_AES_256_GCM_SHA384
         - TLS_CHACHA20_POLY1305_SHA256
    curvePreferences:
      - CurveP521
      - CurveP384
    sniStrict: true


http:
  middlewares:
    https-redirect:
      redirectScheme:
        scheme: https

    default-headers:
      headers:
        customRequestHeaders:
          X-Frame-Options: "SAMEORIGIN"
        CustomFrameOptionsValue: "SAMEORIGIN"
        sslRedirect: true
        browserXssFilter: true
        contentTypeNosniff: true
        forceSTSHeader: true
        stsSeconds: 315360000
        stsIncludeSubdomains: true
        stsPreload: true
        frameDeny: true


# external services: dokuwiki is running, proxmox not
  routers:
    dokuwiki:
      entryPoints:
        - https
      rule: "Host(`wiki.fqdn.tld`)"
      service: "dokuwiki"
      tls:
        certresolver: le

    proxmox:
      entryPoints:
        - https
      rule: "Host(`proxmox.fqdn.tld`)"
      service: "proxmox"
      tls:
        certresolver: le



  services:
    dokuwiki:
      loadBalancer:
        servers:
          - url: "http://192.168.192.171"

    proxmox:
      loadBalancer:
        servers:
          - url: "https://192.168.192.250:8006"

##EOF

For your information. I am an absolute Traefik beginner. What is written here, was searched by me on the Internet together.

Can someone please post me an example how this has to look like so that I can access internally https://192.168.192.123:443 from externally via https://whatever.fqdn.tld.

Kind regards

H-BLOGX

H-BLOGX · January 19, 2021, 2:28pm

i don't know if this is the correct solution, but it works:

https://www.reddit.com/r/Traefik/comments/fwop5y/traefik_2_nondocker_server/fmsplm9/

i write the following in the traefik.yml

serversTransport:
  insecureSkipVerify: true

system · January 22, 2021, 2:28pm

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Unable to access external proxied website from Internet Traefik v2 docker , middleware	8	2084	October 21, 2022
Problems getting results from internal service Traefik v2 docker , file , tcp	3	17	October 18, 2024
Http --> https and https://server/web1 to docker https://web1.local:8443/ Traefik v2 docker , middleware	0	415	May 14, 2021
Please help -everything even HTTPS worked for minutes now internal server error on every backend Traefik v1 docker	1	926	September 16, 2019
SSL secured HTTPS can't be proxied, TLS secured HTTPS or HTTP works Traefik v2 file	4	1078	July 6, 2023

[solved] Forwarding to a internal SSL Domain - How?

Related topics