lp615

论坛的各位大神，你们好，我现在碰到了Traefik反向代理的问题，希望大家可以给予帮助解决，先谢谢大家，我的问题如下（以下domain.com 为我的域名）： 1、容器Traefik我按照官方教程部署完成，并在每个需要代理的容器编辑界面都添加了标签； 2、现在“https://traefik.domain.com”可以访问，但是其他容器按照对应的“https://docker.domin,com”无法访问,不知是何原因，我的.YML文件如下所示：（隐私信息我都用*代替了，望理解） traefik.yml global: checkNewVersion: true sendAnonymousUsage: false serversTransport: insecureSkipVerify: true entryPoints: # Not used in apps, but redirect everything from HTTP to HTTPS http: address: :88 http: redirections: entryPoint: to: https scheme: https # HTTPS endpoint, with domain wildcard https: address: :1443 http: tls: # Generate a wildcard domain certificate certResolver: letsencrypt domains: - main: *****.cc sans: - '*.****.cc' middlewares: - securityHeaders@file providers: providersThrottleDuration: 2s # File provider for connecting things that are outside of docker / defining middleware file: filename: /etc/traefik/fileConfig.yml watch: true # Docker provider for connecting all apps that are inside of the docker network docker: watch: true network: dockernetwork # Add Your Docker Network Name Here # Default host rule to containername.domain.example defaultRule: "Host(`{{ lower (trimPrefix `/` .Name )}}.****.cc`)" # Replace with your domain swarmModeRefreshSeconds: 15s exposedByDefault: false endpoint: "tcp://dockersocket:2375" # Uncomment if you are using docker socket proxy # Enable traefik ui api: dashboard: true insecure: true # Log level INFO|DEBUG|ERROR log: level: INFO # Use letsencrypt to generate ssl serficiates certificatesResolvers: letsencrypt: acme: email: ******@me.com storage: /etc/traefik/acme.json dnsChallenge: provider: alidns # Used to make sure the dns challenge is propagated to the rights dns servers resolvers: - "223.5.5.5:53" - "223.6.6.6:53" fileconfig.yml http: ## EXTERNAL ROUTING - Only use if you want to proxy something manually ## routers: ## SERVICES ## services: ## MIDDLEWARES ## middlewares: # Only Allow Local networks local-ipwhitelist: ipWhiteList: sourceRange: - 127.0.0.1/32 # localhost - 10.10.10.254/24 # LAN Subnet # Security headers securityHeaders: headers: customResponseHeaders: X-Robots-Tag: "none,noarchive,nosnippet,notranslate,noimageindex" X-Forwarded-Proto: "https" server: "" customRequestHeaders: X-Forwarded-Proto: "https" sslProxyHeaders: X-Forwarded-Proto: "https" referrerPolicy: "same-origin" hostsProxyHeaders: - "X-Forwarded-Host" contentTypeNosniff: true browserXssFilter: true forceSTSHeader: true stsIncludeSubdomains: true stsSeconds: 63072000 stsPreload: true # Only use secure ciphers - https://ssl-config.mozilla.org/#server=traefik&version=2.6.0&config=intermediate&guideline=5.6 tls: options: default: minVersion: VersionTLS12 cipherSuites: - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 - TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 - TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 - TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305 - TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305