我正在使用traefik,并且为我的域配置了证书。效果很好!问题是traefik尝试向我未要求的容器询问证书。
例如,如果它尝试向我的容器postgres或redis询问证书。如何在docker中配置traefik,以告诉他不要执行这些操作?
"Using HTTP Challenge provider."
time="2018-12-14T16:23:09Z" level=error msg="Unable to obtain ACME certificate for domains \"redis.docker\" detected thanks to rule \"Host:redis.docker\" : unable to generate a certificate for the domains [redis.docker]: acme: Error 400 - urn:ietf:params:acme:error:malformed - Error creating new order :: Name does not end in a public suffix"
time="2018-12-14T16:23:10Z" level=error msg="Unable to obtain ACME certificate for domains \"postgres.docker\" detected thanks to rule \"Host:postgres.docker\" : unable to generate a certificate for the domains [postgres.docker]: acme: Error 400 - urn:ietf:params:acme:error:malformed - Error creating new order :: Name does not end in a public suffix"
这些容器甚至都没有使用traefik标签声明:
postgres:
image: postgres:9.4
volumes:
- ./init.sql:/docker-entrypoint-initdb.d/init.sql
- postgres_data:/var/lib/postgresql/data
otherImage:
并且我将流量配置为默认情况下不公开主机。 (traefik.toml)
# Enable Docker configuration backend
[docker]
endpoint = "unix:///var/run/docker.sock"
watch = true
exposedbydefault = false
那么如何告诉traefik只为我要的人创建证书?
谢谢
答案 0 :(得分:1)