Hi @gprime44, thanks for your interest!
Does the databases work if you disable TLS on their TCP routers?
E.g. removing the 2 following lines:
- traefik.tcp.routers.mssql.tls=true
(...)
- traefik.tcp.routers.postgres.tls=true
The reasoning behind is the following: enabling TLS termination (or even TLS passthrough) on Traefik TCP routers require the application protocol served to support "SNI" (Server Name Indication) during a standard TLS handshake.
Alas some protocols as Postgres or MySQL does not support it (ref. https://www.postgresql.org/message-id/d05341b9-033f-d5fe-966e-889f5f9218e5@proxel.se for Postgres).
In these cases, don't worry: disabling TLS on Traefik is not disabling encryption at all. Database client (mysql or pgqsl) will encrypt their packets on their own, and Traefik will pass the packet as normal TCP packets, without trying to decrypt its. Then packets are routed to the database server who takes care of decryption.