Traefik DNS challenge with wildcard certificates | easy tutorial
Vložit
- čas přidán 13. 06. 2024
- Hey friends, in this video about the reverse proxy traefik, I'll show you how to configure traefik in the right way to use the dns challenge with cloudflare and issue ssl wildcard certificates with ease!
We just need some configuration for traefik, and some api keys for you dns provider (in my case cloudflare)
With this setup you are able to use wildcard certificates for you domain without opening ports on the host machine, where traefik is running. No http or https ports needed for that.
This can be extremely useful in homelab environments if you don't want or can't expose your ports to the internet, but still want to have certificates for you locally used domains.
github.com/marcogreiveldinger...
🔗 My links:
github.com/marcogreiveldinger
marco-greiveldinger.de
techwithmarco.com
Support me at Patreon: / techwithmarco
00:00 -- Introduction
00:47 -- DNS challenge benefits
03:30 -- Configuration of Traefik
08:05 -- Create api keys for dns provider
09:43 -- Deploy and get certified
11:20 -- Check the results
12:58 -- Outro
#traefik #reverseproxy #letsencrypt #dnschallenge #acme #cloudflare - Věda a technologie
Check out my playlist about traefik stuff :)
czcams.com/play/PLeXyNq8uiaAYOHKR4h4ChZbV1OM3NL31f.html
How did i reserve proxy outside in docker
Hi, How are you doing? My instance is on prem and I followed your example but it won't work for me. I removed the tag "# staging environment of LE, remove for real certs" but "Certificates": null. I am not sure why it is not working. Are we able to connect or can you help me?
Sounds like a timing issue when getting certificates. I'd recommend enabling debug logs of traefik and check what is in there! Drop me a mail! You can find it on my about the channel page.
My issues is this error:
time="2024-02-20T21:16:41Z" level=debug msg="No default certificate, fallback to the internal generated certificate" tlsStoreName=default
time="2024-02-20T21:16:41Z" level=debug msg="Added outgoing tracing middleware noop@internal" middlewareName=tracing middlewareType=TracingForwarder entryPointName=web routerName=web-to-websecure@internal
The A record you make for dev. Is that public or private ip does it matter?
public ip