I am deploying traefik to a Linux service fabric cluster as a guest executable (here is a link to a previous question for some context slack.traefik.io). I'm unsure how to get traefik working with CloudFlare, and I don't know where to find the logs to see what's going wrong, my .toml file is as below:
# Entrypoints definition
#
# Optional
# Default:
[entryPoints]
[entryPoints.http]
address = ":8088"
[entryPoints.https]
address = ":443"
[entryPoints.https.tls]
[entryPoints.traefik]
address = ":8080"
##LetsEncrypt Setup Start
# Enable ACME (Let's Encrypt): automatic SSL.
[acme]
# Email address used for registration.
#
# Required
#
email = "EMAIL ADDRESS"
# File or key used for certificates storage.
#
# Required
#
storage = "acme.json"
# Entrypoint to proxy acme apply certificates to.
#
# Required
#
entryPoint = "https"
# If true, display debug log messages from the acme client library.
#
# Optional
# Default: false
#
acmeLogging = true
# CA server to use.
# Uncomment the line to use Let's Encrypt's staging server,
# leave commented to go to prod.
#
# Optional
#Default: "https://acme-v02.api.letsencrypt.org/directory"
caServer = "https://acme-staging-v02.api.letsencrypt.org/directory"
# Use a TLS-ALPN-01 ACME challenge.
#
# Optional (but recommended)
#
[acme.tlsChallenge]
# Use a DNS-01 ACME challenge rather than HTTP-01 challenge.
# Note: mandatory for wildcard certificate generation.
#
# Optional
#
[acme.dnsChallenge]
# DNS provider used.
#
# Required
#
provider = "cloudflare"
CF_API_EMAIL = "EMAIL FROM CLOUDFLARE"
CF_API_KEY = "APIKEY FROM CLOUDFLARE"
# Domains list.
# Only domains defined here can generate wildcard certificates.
# The certificates for these domains are negotiated at traefik startup only.
#
[[acme.domains]]
main = "domain.com"
sans = ["dev.domain.com", "qa.domain.com"]
##LetsEncrypt Setup End