This is my traefik.toml
[entryPoints] [entryPoints.web] address = ":80" [entryPoints.websecure] address = ":443" [entryPoints.websecure.http.tls] certResolver = "myresolver" [certificatesResolvers.myresolver.acme] email = "MY_MAIL" storage = "acme.json" [certificatesResolvers.myresolver.acme.httpChallenge] # used during the challenge entryPoint = "web"
And this is my docker-compose:
version: '3.3' services: traefik: image: traefik:latest container_name: traefik hostname: traefik ports: - "80:80" - "8080:8080" volumes: - /var/run/docker.sock:/var/run/docker.sock:ro - /data/traefik/acme.json:/acme.json - /data/traefik/traefik.toml:/traefik.toml labels: traefik.enable: "true" com.centurylinklabs.watchtower.enable: "true" #This is for watchtowerS extra_hosts: - host.docker.internal:172.17.0.1 # I don't know why this is needed whoami: # A container that exposes an AP I to show its IP address image: traefik/whoami labels: # - "traefik.http.routers.whoami.rule=Host(`whoami.docker.localhost`)" # - "traefik.http.routers.whoami2.rule=Host(`DOMAIN`)" - "traefik.http.routers.whoami.rule=Host(`INTERNAL_IP`)" - "traefik.http.routers.whoami2.tls=true" whoami2: image: traefik/whoami labels: - "traefik.http.routers.whoami2.rule=Host(`DOMAIN`)" # - "traefik.http.routers.whoami2.tls.certresolver=myresolver" # - "traefik.http.routers.whoami2.middlewares=whoami-https" # - "traefik.http.middlewares.whoami-https.redirectscheme.scheme=https" # - "traefik.http.routers.whoami2.tls=true"
Now, whatever I try, I cannot manage to expose the whoami via https. In the dashboard, all rules seem to be correct and active. But in the browser I always get ERR_CONNECTION_CLOSED, and curl gives me either "curl: (35) OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to" on my Raspberry Pi or "curl: (35) OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to" in Windows.
When I try to connect via https, nothing is shown in the logs - no matter whether I try with the domain name or the internal IP address. The let's encrypt certificate seems to be there, at least I see no errors for in the logs, and I see the data in acme.json
Any idea where I have errors in the setup?
Thanks in advance!