I am trying to create a setup where traefik acts as a proxy for a service running on a different host in addition to Docker and other functions. Right now, I'm just trying to keep it simple and get the single entry working.
I'm not really using me.com - I've used this in the below content to mask my domain.
I've got to the point where a TLS certificate is being issued by ACME, but requests to the service return:
This site can’t be reached
apu2.me.com refused to connect.
Try:
Checking the connection
Checking the proxy and the firewall
ERR_CONNECTION_REFUSED
The certificate in the browser is valid at this point and is issued by letsencrypt to apu2.me.com
apu2.me.com resolves to the same host as I'm running traefik on.
Any pointers would be much appreciated!
I'm running in traefik in docker with the following command:
docker run --rm -e CF_API_EMAIL=cloudflare@me.com -e CF_API_KEY=hahahaha -p 8080:8080 -p 80:80 -p 443:443 -v /root/traefik_config/:/etc/traefik/ traefik:v2.3
My traefik.yaml file is
global:
checkNewVersion: true
sendAnonymousUsage: true
api:
insecure: true
dashboard: true
debug: true
providers:
file:
filename: /etc/traefik/dynamic.yaml
serversTransport:
insecureSkipVerify: true
entryPoints:
web:
address: ":80"
proxyProtocol:
insecure: true
websecure:
address: ":443"
log:
filePath: "/etc/traefik/logs/traefik.log"
level: DEBUG
certificatesResolvers:
myresolver:
acme:
email: "myacme@me.com"
storage: "/etc/traefik/acme/acme.json"
dnsChallenge:
provider: cloudflare
delayBeforeCheck: 0
My dynamic.yaml file is
http:
routers:
apu_https:
rule: "Host(`apu2.me.com`)"
entrypoints: "websecure"
service: service-apu
tls:
certResolver: myresolver
services:
service-apu:
loadBalancer:
servers:
- url: "http://192.168.1.10/"
The following entry appears in the log repeatedly when visiting https://apu2.me.com/
time="2020-11-04T15:53:57Z" level=debug msg="vulcand/oxy/roundrobin/rr: Forwarding this request to URL" Request="{\"Method\":\"GET\",\"URL\":{\"Scheme\":\"\",\"Opaque\":\"\",\"User\":null,\"Host\":\"\",\"Path\":\"/\",\"RawPath\":\"\",\"ForceQuery\":false,\"RawQuery\":\"\",\"Fragment\":\"\",\"RawFragment\":\"\"},\"Proto\":\"HTTP/2.0\",\"ProtoMajor\":2,\"ProtoMinor\":0,\"Header\":{\"Accept\":[\"text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\"],\"Accept-Encoding\":[\"gzip, deflate, br\"],\"Accept-Language\":[\"en-GB,en-US;q=0.9,en;q=0.8\"],\"Cache-Control\":[\"max-age=0\"],\"Dnt\":[\"1\"],\"Sec-Fetch-Dest\":[\"document\"],\"Sec-Fetch-Mode\":[\"navigate\"],\"Sec-Fetch-Site\":[\"none\"],\"Sec-Fetch-User\":[\"?1\"],\"Sec-Gpc\":[\"1\"],\"Upgrade-Insecure-Requests\":[\"1\"],\"User-Agent\":[\"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.111 Safari/537.36\"],\"X-Forwarded-Host\":[\"apu2.me.com\"],\"X-Forwarded-Port\":[\"443\"],\"X-Forwarded-Proto\":[\"https\"],\"X-Forwarded-Server\":[\"2d42b58e2520\"],\"X-Real-Ip\":[\"192.168.1.36\"]},\"ContentLength\":0,\"TransferEncoding\":null,\"Host\":\"apu2.me.com\",\"Form\":null,\"PostForm\":null,\"MultipartForm\":null,\"Trailer\":null,\"RemoteAddr\":\"192.168.1.36:65270\",\"RequestURI\":\"/\",\"TLS\":null}" ForwardURL="http://192.168.1.240/"
time="2020-11-04T15:53:57Z" level=debug msg="vulcand/oxy/roundrobin/rr: completed ServeHttp on request" Request="{\"Method\":\"GET\",\"URL\":{\"Scheme\":\"\",\"Opaque\":\"\",\"User\":null,\"Host\":\"\",\"Path\":\"/\",\"RawPath\":\"\",\"ForceQuery\":false,\"RawQuery\":\"\",\"Fragment\":\"\",\"RawFragment\":\"\"},\"Proto\":\"HTTP/2.0\",\"ProtoMajor\":2,\"ProtoMinor\":0,\"Header\":{\"Accept\":[\"text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\"],\"Accept-Encoding\":[\"gzip, deflate, br\"],\"Accept-Language\":[\"en-GB,en-US;q=0.9,en;q=0.8\"],\"Cache-Control\":[\"max-age=0\"],\"Dnt\":[\"1\"],\"Sec-Fetch-Dest\":[\"document\"],\"Sec-Fetch-Mode\":[\"navigate\"],\"Sec-Fetch-Site\":[\"none\"],\"Sec-Fetch-User\":[\"?1\"],\"Sec-Gpc\":[\"1\"],\"Upgrade-Insecure-Requests\":[\"1\"],\"User-Agent\":[\"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.111 Safari/537.36\"],\"X-Forwarded-Host\":[\"apu2.me.com\"],\"X-Forwarded-Port\":[\"443\"],\"X-Forwarded-Proto\":[\"https\"],\"X-Forwarded-Server\":[\"2d42b58e2520\"],\"X-Real-Ip\":[\"192.168.1.36\"]},\"ContentLength\":0,\"TransferEncoding\":null,\"Host\":\"apu2.me.com\",\"Form\":null,\"PostForm\":null,\"MultipartForm\":null,\"Trailer\":null,\"RemoteAddr\":\"192.168.1.36:65270\",\"RequestURI\":\"/\",\"TLS\":null}"