Tls.option are not applied in traefik.toml

Traefik Traefik v2 (latest)
1

Hi everyone,
I am configuring traefik by using a toml file, however the tls options on the bottom are not applied.
TLS Version 1.0 and 1.1 are still enabled when checking using e.g. ssllabs.com
What am I doing wrong?

Thanks!

[api]
  insecure = true

[providers.docker]

[entryPoints]
  [entryPoints.web]
    address = ":80"

    [entryPoints.web.http]
    [entryPoints.web.http.redirections]
      [entryPoints.web.http.redirections.entryPoint]
        to = "websecure"
        scheme = "https"

  [entryPoints.websecure]
    address = ":443"

[certificatesResolvers.myresolver.acme]
  email = "name@email.net"
  storage = "/letsencrypt/acme.json"
  [certificatesResolvers.myresolver.acme.tlsChallenge]

[tls.options]
  [tls.options.myTLSOptions]
    minVersion = "VersionTLS12"
    cipherSuites = [
      "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
      "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
      "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256",
      "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256",
      "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256",
      "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
    ]
1 Like
2

TLS options are not defined in the static config. It has to be in a dynamic provider, file and kubernetes are listed in the example and in the references -> dynamic configuration.

As this is not the default options ensure you containers have the http.routers.foo.tls.options: myTLSOptions label.

3

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.