Kubernetes tls for tcp subdomain

rp346 · March 26, 2020, 9:19pm

Hi,

I have following in traefik.toml

    [global]
      checkNewVersion = true

    [entryPoints]
      [entryPoints.web]
        address = ":80"
      [entryPoints.websecure]
        address = ":443"
      [entryPoints.tcp5050]
        address = ":5050"

and following IngressRouteTCP

apiVersion: traefik.containo.us/v1alpha1
kind: IngressRouteTCP
metadata:
  name: mosquitto-external
  namespace: dev
spec:
  entryPoints:
    - tcp5050
  routes:
  - match: HostSNI(`*`)
    kind: Rule
    services:
    - name: mosquitto
      port: 5050
  tls:

This one works perfectly. But can't reuse entryPoints tcp5050 for any other host. I tried to make IngressRouteTCP specific to HostSNI like this

apiVersion: traefik.containo.us/v1alpha1
kind: IngressRouteTCP
metadata:
  name: mosquitto-external
  namespace: dev
spec:
  entryPoints:
    - tcp5050
  routes:
  - match: HostSNI(`mosquitto.dev.domain.com`)
    kind: Rule
    services:
    - name: mosquitto
      port: 5050
  tls:
    passthrough: true

But it this doesn't work at all.

What I am missing here ?

Topic		Replies	Views
TCP on Kubernetes Traefik v2 (latest) kubernetes-ingress	20	10384	September 18, 2022
Hosting a HTTP-App on a custom TCP-Port with TLS Traefik v2 (latest) kubernetes-crd , kubernetes-ingress , tcp	1	975	March 25, 2022
IngressRouteTCP fails Traefik v2 (latest) tcp	2	506	June 30, 2021
Traefik not respecting entrypoint constraints Traefik v2 (latest) kubernetes-crd , tcp	0	452	September 18, 2019
How to configure the IngressRouteTCP to receiveTCP/NonSSL and forward to more than one backend services Traefik v2 (latest) kubernetes-crd , tcp	3	636	November 28, 2022

Kubernetes tls for tcp subdomain

Related Topics