瀏覽代碼
Add upstream `proxy_protocol` instructions to traefik (#3150)
* Add upstream `proxy_protocol` instructions to traefik * Fix YAML indentation to use spaces --------- Co-authored-by: Slavi Pantaleev <slavi@devture.com>pull/3155/head
Ed Geraghty
2 年之前
committed by
GitHub
GitHub
沒有發現已知的金鑰在資料庫的簽署中
GPG 金鑰 ID: B5690EEEBB952194
共有 1 個檔案被更改,包括 22 行新增 和 0 行删除
統一視圖
Diff Options
+ 22
- 0
docs/configuring-playbook-traefik.md
查看文件
| @@ -137,3 +137,25 @@ Changing the `url` to one with an `http://` prefix would allow to connect to the | |||||
| With these changes, all TCP traffic will be reverse-proxied to the target system. | With these changes, all TCP traffic will be reverse-proxied to the target system. | ||||
| **WARNING**: This configuration might lead to problems or need additional steps when a [certbot](https://certbot.eff.org/) behind Traefik also tries to manage [Let's Encrypt](https://letsencrypt.org/) certificates, as Traefik captures all traffic to ```PathPrefix(`/.well-known/acme-challenge/`)```. | **WARNING**: This configuration might lead to problems or need additional steps when a [certbot](https://certbot.eff.org/) behind Traefik also tries to manage [Let's Encrypt](https://letsencrypt.org/) certificates, as Traefik captures all traffic to ```PathPrefix(`/.well-known/acme-challenge/`)```. | ||||
| ## Traefik behind a `proxy_protocol` reverse-proxy | |||||
| If you run a reverse-proxy which speaks `proxy_protocol`, add the following to your configuration file: | |||||
| ```yaml | |||||
| devture_traefik_configuration_extension_yaml: | | |||||
| entryPoints: | |||||
| web-secure: | |||||
| proxyProtocol: | |||||
| trustedIPs: | |||||
| - "127.0.0.1/32" | |||||
| - "<proxy internal IPv4>/32" | |||||
| - "<proxy IPv6>/128" | |||||
| matrix-federation: | |||||
| proxyProtocol: | |||||
| trustedIPs: | |||||
| - "127.0.0.1/32" | |||||
| - "<proxy internal IPv4>/32" | |||||
| - "<proxy IPv6>/128" | |||||
| ``` | |||||