Hi everyone,
I'm trying to do this official tutoriel for configuring Traefik with Let's Encrypt and Docker: https://docs.traefik.io/v1.7/user-guide/docker-and-lets-encrypt/
Instead of having the my-docker-registry.com/my-awesome-app/app:latest
image, I used the containous/whoami
image.
However, it seems to me that it is not working. I cannot access the host whoami.shinobi.com
either through http or https. I can only access it with the http link and the ip address provided in the backend section of the Traefik dashboard.
Here's the docker-compose.yml file for the Traefik reverse proxy:
version: '3.7'
services:
traefik:
image: traefik:v1.7
restart: always
ports:
- 80:80
- 443:443
- 8080:8080
networks:
- web
volumes:
- /var/run/docker.sock:/var/run/docker.sock
- ./acme.json:/acme.json
container_name: traefik
command:
- --api
- --docker
- --debug=true
- --logLevel=DEBUG
- --defaultentrypoints=https,http
- --entryPoints=Name:http Address::80 Redirect.EntryPoint:https
- --entryPoints=Name:https Address::443 TLS
- --retry
- --docker.endpoint=unix:///var/run/docker.sock
- --docker.watch=true
- --docker.exposedbydefault=false
- --docker.domain=shinobi.com
- --acme.email=myemail@address.com
- --acme.storage=acme.json
- --acme.entryPoint=https
- --acme.onHostRule=true
- --acme.httpchallenge.entrypoint=http
- --acme.caServer=https://acme-staging-v02.api.letsencrypt.org/directory
labels:
- "traefik.enable=true"
- "traefik:frontend.rule=Host:monitor.traefik.com"
networks:
web:
external: true
and here the docker-compose.yml file for the whoami application:
version: '3.7'
services:
whoami:
image: containous/whoami
depends_on:
- db
- redis
restart: always
networks:
- web
- default
labels:
- "traefik.docker.network=web"
- "traefik.enable=true"
- "traefik.basic.frontend.rule=Host:whoami.shinobi.com"
- "traefik.basic.protocol=http"
- "traefik.admin.frontend.rule=Host:admin.shinobi.com"
- "traefik.admin.protocol=https"
- "traefik.admin.port=443"
db:
image: postgres:12
restart: always
redis:
image: redis:latest
restart: always
networks:
web:
external: true
Can someone please provide some guidance?
I have those errors on the Traefik logs:
traefik | time="2020-01-02T14:14:05Z" level=error msg="Unable to obtain ACME certificate for domains \"traefik.letsencrypt.shinobi.com\" detected thanks to rule \"Host:traefik.letsencrypt.shinobi.com\" : unable to generate a certificate for the domains [traefik.letsencrypt.shinobi.com]: acme: Error -> One or more domains had a problem:\n[traefik.letsencrypt.shinobi.com] acme: error: 400 :: urn:ietf:params:acme:error:dns :: DNS problem: NXDOMAIN looking up A for traefik.letsencrypt.shinobi.com, url: \n"
traefik | time="2020-01-02T14:14:05Z" level=error msg="Unable to obtain ACME certificate for domains \"admin.shinobi.com\" detected thanks to rule \"Host:admin.shinobi.com\" : unable to generate a certificate for the domains [admin.shinobi.com]: acme: Error -> One or more domains had a problem:\n[admin.shinobi.com] acme: error: 400 :: urn:ietf:params:acme:error:dns :: DNS problem: NXDOMAIN looking up A for admin.shinobi.com, url: \n"