Docker - Traefik - Wildcard Cert
Intro
TLS is must, but do you wanna generate a own Certificate for each Service you Provide ? Specially, when you have a *.domain.tld Record set ?
Trafik is able to handle that for you. Let’s Encrypt offers the possibility to use DNS Validation for Wildcard Domains. Here is a list of Providers that can automate DNS Verfication.
Helpful URL
- https://doc.traefik.io/traefik/user-guides/docker-compose/acme-dns/
- https://www.digitalocean.com/community/tutorials/how-to-use-traefik-v2-as-a-reverse-proxy-for-docker-containers-on-ubuntu-20-04
- https://www.carluccio.de/reverse-proxy-traefik-mit-wildcard-zertifikaten/
- https://linuxblog.xyz/posts/traefik-2-docker-compose/
- https://medium.com/@KagundaJM/proxy-buffalo-app-with-traefik-and-lets-encrypt-on-digitalocean-505060edef4c
Fully Example with Docker Compose, Traefik, Digital Ocean
Prepare Env
cd /where/ever/you/want
mkdir data
touch data/acme.json
Variables
we need a few Variables. Let’s put them in a .env file and docker-compose will use them when called.