related to new ServersTransport available in 2.4.0(-rc1 for now) that allows TLS for outbound trafic,
it seems that SNI is not supported for outgoing trafic .I would expect the serversTransport to allow
to set a SNI host (setting Host header is not sufficient for strict SNI checking it seems)
I have a traefik 2.4 in an EKS (aws k8s) that forwards to services hosted in another k8s (+istio) on port 443. I use the k8s crd to create dynamic config (ExternalName to define host to reach eg myhost.com)
the route 53 I created (eg. myhost.com) leads to the Istio ingress, and then a GAteway checks host myvirtualservice.myhost.com for routing. The certficates are specific to myvirtualservice.myhost.com
the connection is reset by envoy in the backup.
running openssl from a pod near Traefik leads to the same result if the -serverName is omited
Is there something I do wrong or I missed in the config? Should this be a feature/bug to submit to traefik team ?