I've tried everything I've found through Google and just can't figure this out. I followed the guide at smart home beginner to setup traefik3 on my raspberry pi and added the cloudflared tunnel within docker. I can access everything locally on my network without issue. However, when I try to access anything externally, I can't get through at all. The browser window says "misdirected request" and the logs show "TLS options difference: SNI:default, Header:tls-opts@file".
If I comment out the TLS parts of the config, it works without issue, but I understand it's not entirely secure. Can anyone help me?
Did you install Cloudflare tunnel software on your host? Then everything is encrypted in transit and I would say you don’t really need active TLS in Traefik.
But it would also depend on how you set up Cloudflare, if it uses http or https to forward requests.
Cloudflare tunnel is installed on the same raspberry pi that traefik is on. In the tunnel config for public hostname, it's *.domain.ca pointing to https://traefik. When I visit service.domain.ca with TLS disabled, it's through https with the valid certificate I have in the acme file. With TLS enabled, is https as well, just with the errors. From my understanding, the entry points are https.