Last active
May 18, 2020 18:55
-
-
Save McFateM/b525152c822cdb3dd85d5214c06b1d8e to your computer and use it in GitHub Desktop.
DGDocker3 Test 7 - DNS-01 Challenge with LE Staging
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| b10d0e21122445a899dfe3fdbfef73a5982adcfd2ba8d8946b8dde124e098303 | |
| Pulling traefik (traefik:2.2.1)... | |
| 2.2.1: Pulling from library/traefik | |
| cbdbe7a5bc2a: Pull complete | |
| f16506d32a25: Pull complete | |
| 2be216d464d0: Pull complete | |
| aed51f08b610: Pull complete | |
| Digest: sha256:ad4442a6f88cf35266542588f13ae9984aa058a55a518a87876e48c160d19ee0 | |
| Status: Downloaded newer image for traefik:2.2.1 | |
| Creating traefik ... done | |
| Attaching to traefik | |
| traefik | time="2020-05-18T14:54:38-04:00" level=info msg="Configuration loaded from file: /traefik.yml" | |
| Creating network "watchtower_default" with the default driver | |
| Pulling watchtower (containrrr/watchtower:)... | |
| latest: Pulling from containrrr/watchtower | |
| c4b177d7cf7a: Pull complete | |
| 676d5222541c: Pull complete | |
| 00dbe20f4a5b: Pull complete | |
| Digest: sha256:76fb863ea0c513d870f8634a13e061f81c387a62ecc27ad64f9b06179181c394 | |
| Status: Downloaded newer image for containrrr/watchtower:latest | |
| Creating watchtower ... done | |
| Attaching to watchtower | |
| Pulling portainer (portainer/portainer:1.23.2)... | |
| 1.23.2: Pulling from portainer/portainer | |
| d1e017099d17: Pull complete | |
| a7dca5b5a9e8: Pull complete | |
| Digest: sha256:4ae7f14330b56ffc8728e63d355bc4bc7381417fa45ba0597e5dd32682901080 | |
| Status: Downloaded newer image for portainer/portainer:1.23.2 | |
| Creating portainer ... done | |
| Attaching to portainer | |
| portainer | 2020/05/18 14:54:47 Templates already registered inside the database. Skipping template import. | |
| portainer | 2020/05/18 14:54:47 Starting Portainer 1.23.2 on :9000 | |
| portainer | 2020/05/18 14:54:47 [DEBUG] [chisel, monitoring] [check_interval_seconds: 10.000000] [message: starting tunnel management process] | |
| portainer | 2020/05/18 14:54:47 server: Reverse tunnelling enabled | |
| portainer | 2020/05/18 14:54:47 server: Fingerprint 83:bd:ad:29:c2:df:9d:7c:fc:e9:2f:b2:f3:00:4b:9d | |
| portainer | 2020/05/18 14:54:47 server: Listening on 0.0.0.0:8000... | |
| Pulling landing (mcfatem/dgdocker3-landing:latest)... | |
| latest: Pulling from mcfatem/dgdocker3-landing | |
| 4167d3e14976: Pull complete | |
| bb292c78f105: Pull complete | |
| cdc9787ad2b6: Pull complete | |
| Digest: sha256:438163c532d9070317640f91d0038a9223f9dc4012d870d2b890e37af1748e02 | |
| Status: Downloaded newer image for mcfatem/dgdocker3-landing:latest | |
| Creating landing-page ... done | |
| Attaching to landing-page | |
| Dumping traefik.log... | |
| time="2020-05-18T14:54:38-04:00" level=info msg="Traefik version 2.2.1 built on 2020-04-29T18:02:09Z" | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="Static configuration loaded {\"global\":{\"checkNewVersion\":true},\"serversTransport\":{\"maxIdleConnsPerHost\":200},\"entryPoints\":{\"http\":{\"address\":\":80\",\"transport\":{\"lifeCycle\":{\"graceTimeOut\":10000000000},\"respondingTimeouts\":{\"idleTimeout\":180000000000}},\"forwardedHeaders\":{},\"http\":{}},\"https\":{\"address\":\":443\",\"transport\":{\"lifeCycle\":{\"graceTimeOut\":10000000000},\"respondingTimeouts\":{\"idleTimeout\":180000000000}},\"forwardedHeaders\":{},\"http\":{}}},\"providers\":{\"providersThrottleDuration\":2000000000,\"docker\":{\"watch\":true,\"endpoint\":\"unix:///var/run/docker.sock\",\"defaultRule\":\"Host(`{{ normalize .Name }}`)\",\"swarmModeRefreshSeconds\":15000000000}},\"api\":{\"dashboard\":true},\"log\":{\"level\":\"DEBUG\",\"filePath\":\"/var/log/traefik.log\",\"format\":\"common\"},\"certificatesResolvers\":{\"http\":{\"acme\":{\"email\":\"digital@grinnell.edu\",\"caServer\":\"https://acme-staging-v02.api.letsencrypt.org/directory\",\"storage\":\"acme.json\",\"keyType\":\"RSA4096\",\"dnsChallenge\":{\"provider\":\"azure\"}}}}}" | |
| time="2020-05-18T14:54:38-04:00" level=info msg="\nStats collection is disabled.\nHelp us improve Traefik by turning this feature on :)\nMore details on: https://docs.traefik.io/contributing/data-collection/\n" | |
| time="2020-05-18T14:54:38-04:00" level=info msg="Starting provider aggregator.ProviderAggregator {}" | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="Start TCP Server" entryPointName=https | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="Start TCP Server" entryPointName=http | |
| time="2020-05-18T14:54:38-04:00" level=info msg="Starting provider *acme.Provider {\"email\":\"digital@grinnell.edu\",\"caServer\":\"https://acme-staging-v02.api.letsencrypt.org/directory\",\"storage\":\"acme.json\",\"keyType\":\"RSA4096\",\"dnsChallenge\":{\"provider\":\"azure\"},\"ResolverName\":\"http\",\"store\":{},\"ChallengeStore\":{}}" | |
| time="2020-05-18T14:54:38-04:00" level=info msg="Testing certificate renew..." providerName=http.acme | |
| time="2020-05-18T14:54:38-04:00" level=info msg="Starting provider *docker.Provider {\"watch\":true,\"endpoint\":\"unix:///var/run/docker.sock\",\"defaultRule\":\"Host(`{{ normalize .Name }}`)\",\"swarmModeRefreshSeconds\":15000000000}" | |
| time="2020-05-18T14:54:38-04:00" level=info msg="Starting provider *traefik.Provider {}" | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="Configuration received from provider http.acme: {\"http\":{},\"tls\":{}}" providerName=http.acme | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="Configuration received from provider internal: {\"http\":{\"services\":{\"api\":{},\"dashboard\":{},\"noop\":{}}},\"tcp\":{},\"tls\":{}}" providerName=internal | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="No default certificate, generating one" | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="Provider connection established with docker 19.03.8 (API 1.40)" providerName=docker | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="Configuration received from provider docker: {\"http\":{\"routers\":{\"http-catchall\":{\"entryPoints\":[\"http\"],\"middlewares\":[\"redirect-to-https\"],\"service\":\"traefik-traefik\",\"rule\":\"hostregexp(`{host:[a-z-.]+}`)\"},\"traefik-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"traefik-auth\"],\"service\":\"api@internal\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 (PathPrefix(`/api`) || PathPrefix(`/dashboard`))\",\"tls\":{\"certResolver\":\"http\"}}},\"services\":{\"traefik-traefik\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.2:80\"}],\"passHostHeader\":true}}},\"middlewares\":{\"redirect-to-https\":{\"redirectScheme\":{\"scheme\":\"https\"}},\"traefik-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}}}},\"tcp\":{},\"udp\":{}}" providerName=docker | |
| time="2020-05-18T14:54:38-04:00" level=debug msg="No default certificate, generating one" | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" middlewareType=Pipelining entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik middlewareName=pipelining | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Creating load-balancer" entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Creating server 0 http://172.30.0.2:80" entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik serverName=0 | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Added outgoing tracing middleware traefik-traefik" entryPointName=http routerName=http-catchall@docker middlewareName=tracing middlewareType=TracingForwarder | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http routerName=http-catchall@docker | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Setting up redirection to https " middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http routerName=http-catchall@docker | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Adding tracing to middleware" middlewareName=redirect-to-https@docker routerName=http-catchall@docker entryPointName=http | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" middlewareType=Recovery entryPointName=http middlewareName=traefik-internal-recovery | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Added outgoing tracing middleware api@internal" routerName=traefik-secure@docker middlewareName=tracing middlewareType=TracingForwarder entryPointName=https | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" middlewareName=traefik-auth@docker middlewareType=BasicAuth routerName=traefik-secure@docker entryPointName=https | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Adding tracing to middleware" routerName=traefik-secure@docker middlewareName=traefik-auth@docker entryPointName=https | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" entryPointName=https middlewareName=traefik-internal-recovery middlewareType=Recovery | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="No default certificate, generating one" | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" routerName=traefik-secure@docker | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" routerName=traefik-secure@docker providerName=http.acme | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Domains [\"dgdocker3.grinnell.edu\"] need ACME certificates generation for domains \"dgdocker3.grinnell.edu\"." providerName=http.acme rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" routerName=traefik-secure@docker | |
| time="2020-05-18T14:54:39-04:00" level=debug msg="Loading ACME certificates [dgdocker3.grinnell.edu]..." providerName=http.acme rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" routerName=traefik-secure@docker | |
| time="2020-05-18T14:54:40-04:00" level=debug msg="Building ACME client..." providerName=http.acme | |
| time="2020-05-18T14:54:40-04:00" level=debug msg="https://acme-staging-v02.api.letsencrypt.org/directory" providerName=http.acme | |
| time="2020-05-18T14:54:40-04:00" level=info msg=Register... providerName=http.acme | |
| time="2020-05-18T14:54:40-04:00" level=debug msg="legolog: [INFO] acme: Registering account for digital@grinnell.edu" | |
| time="2020-05-18T14:54:41-04:00" level=debug msg="Using DNS Challenge provider: azure" providerName=http.acme | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Provider event received {Status:start ID:39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc From:containrrr/watchtower Type:container Action:start Actor:{ID:39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc Attributes:map[com.centurylinklabs.watchtower:true com.docker.compose.config-hash:fbbe98cabf78ab96e8f6c95d30f40d10c2185984ec046d8e8be402879e831396 com.docker.compose.container-number:1 com.docker.compose.oneoff:False com.docker.compose.project:watchtower com.docker.compose.project.config_files:docker-compose.yml com.docker.compose.project.working_dir:/opt/containers/watchtower com.docker.compose.service:watchtower com.docker.compose.version:1.25.1 image:containrrr/watchtower name:watchtower traefik.enable:false]} Scope:local Time:1589828082 TimeNano:1589828082414088607}" providerName=docker | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Filtering disabled container" providerName=docker container=watchtower-watchtower-39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Configuration received from provider docker: {\"http\":{\"routers\":{\"http-catchall\":{\"entryPoints\":[\"http\"],\"middlewares\":[\"redirect-to-https\"],\"service\":\"traefik-traefik\",\"rule\":\"hostregexp(`{host:[a-z-.]+}`)\"},\"traefik-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"traefik-auth\"],\"service\":\"api@internal\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 (PathPrefix(`/api`) || PathPrefix(`/dashboard`))\",\"tls\":{\"certResolver\":\"http\"}}},\"services\":{\"traefik-traefik\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.2:80\"}],\"passHostHeader\":true}}},\"middlewares\":{\"redirect-to-https\":{\"redirectScheme\":{\"scheme\":\"https\"}},\"traefik-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}}}},\"tcp\":{},\"udp\":{}}" providerName=docker | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" routerName=http-catchall@docker serviceName=traefik-traefik middlewareName=pipelining middlewareType=Pipelining entryPointName=http | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Creating load-balancer" entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Creating server 0 http://172.30.0.2:80" entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik serverName=0 | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Added outgoing tracing middleware traefik-traefik" entryPointName=http routerName=http-catchall@docker middlewareName=tracing middlewareType=TracingForwarder | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" routerName=http-catchall@docker middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Setting up redirection to https " routerName=http-catchall@docker middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Adding tracing to middleware" entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" middlewareName=traefik-internal-recovery middlewareType=Recovery entryPointName=http | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Added outgoing tracing middleware api@internal" routerName=traefik-secure@docker middlewareName=tracing middlewareType=TracingForwarder entryPointName=https | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" entryPointName=https routerName=traefik-secure@docker middlewareName=traefik-auth@docker middlewareType=BasicAuth | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Adding tracing to middleware" middlewareName=traefik-auth@docker entryPointName=https routerName=traefik-secure@docker | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" middlewareName=traefik-internal-recovery middlewareType=Recovery entryPointName=https | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="No default certificate, generating one" | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme | |
| time="2020-05-18T14:54:42-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." providerName=http.acme routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" | |
| time="2020-05-18T14:54:43-04:00" level=debug msg="Serving default certificate for request: \"dgdocker3.grinnell.edu\"" | |
| time="2020-05-18T14:54:43-04:00" level=debug msg="http: TLS handshake error from 132.161.249.72:62734: remote error: tls: bad certificate" | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Provider event received {Status:start ID:d727615d6a6282a71e880c23118a10329d6e64bb3a9fc41ad59575939a11885f From:portainer/portainer:1.23.2 Type:container Action:start Actor:{ID:d727615d6a6282a71e880c23118a10329d6e64bb3a9fc41ad59575939a11885f Attributes:map[com.docker.compose.config-hash:10b9bdf905a02c8bf5f41b256ff7ae09846614afbecb9dcc4e2e06c954f4914f com.docker.compose.container-number:1 com.docker.compose.oneoff:False com.docker.compose.project:portainer com.docker.compose.project.config_files:docker-compose.yml com.docker.compose.project.working_dir:/opt/containers/portainer com.docker.compose.service:portainer com.docker.compose.version:1.25.1 image:portainer/portainer:1.23.2 name:portainer traefik.docker.network:proxy traefik.enable:true traefik.http.middlewares.portainer-auth.basicauth.users:admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy traefik.http.middlewares.portainer-stripprefix.stripprefix.prefixes:/portainer traefik.http.routers.portainer-secure.entrypoints:https traefik.http.routers.portainer-secure.middlewares:portainer-stripprefix traefik.http.routers.portainer-secure.rule:Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`) traefik.http.routers.portainer-secure.service:portainer traefik.http.routers.portainer-secure.tls:true traefik.http.routers.portainer-secure.tls.certresolver:http traefik.http.services.portainer.loadbalancer.server.port:9000]} Scope:local Time:1589828087 TimeNano:1589828087457231546}" providerName=docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Filtering disabled container" providerName=docker container=watchtower-watchtower-39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Configuration received from provider docker: {\"http\":{\"routers\":{\"http-catchall\":{\"entryPoints\":[\"http\"],\"middlewares\":[\"redirect-to-https\"],\"service\":\"traefik-traefik\",\"rule\":\"hostregexp(`{host:[a-z-.]+}`)\"},\"portainer-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"portainer-stripprefix\"],\"service\":\"portainer\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 PathPrefix(`/portainer`)\",\"tls\":{\"certResolver\":\"http\"}},\"traefik-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"traefik-auth\"],\"service\":\"api@internal\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 (PathPrefix(`/api`) || PathPrefix(`/dashboard`))\",\"tls\":{\"certResolver\":\"http\"}}},\"services\":{\"portainer\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.3:9000\"}],\"passHostHeader\":true}},\"traefik-traefik\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.2:80\"}],\"passHostHeader\":true}}},\"middlewares\":{\"portainer-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}},\"portainer-stripprefix\":{\"stripPrefix\":{\"prefixes\":[\"/portainer\"],\"forceSlash\":true}},\"redirect-to-https\":{\"redirectScheme\":{\"scheme\":\"https\"}},\"traefik-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}}}},\"tcp\":{},\"udp\":{}}" providerName=docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" middlewareType=Pipelining entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik middlewareName=pipelining | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating load-balancer" routerName=http-catchall@docker serviceName=traefik-traefik entryPointName=http | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating server 0 http://172.30.0.2:80" serviceName=traefik-traefik entryPointName=http routerName=http-catchall@docker serverName=0 | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Added outgoing tracing middleware traefik-traefik" routerName=http-catchall@docker entryPointName=http middlewareName=tracing middlewareType=TracingForwarder | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http routerName=http-catchall@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Setting up redirection to https " entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker middlewareType=RedirectScheme | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Adding tracing to middleware" entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" entryPointName=http middlewareName=traefik-internal-recovery middlewareType=Recovery | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Added outgoing tracing middleware api@internal" entryPointName=https routerName=traefik-secure@docker middlewareType=TracingForwarder middlewareName=tracing | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" middlewareName=traefik-auth@docker middlewareType=BasicAuth entryPointName=https routerName=traefik-secure@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Adding tracing to middleware" entryPointName=https routerName=traefik-secure@docker middlewareName=traefik-auth@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" middlewareType=Pipelining entryPointName=https routerName=portainer-secure@docker serviceName=portainer middlewareName=pipelining | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating load-balancer" serviceName=portainer entryPointName=https routerName=portainer-secure@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating server 0 http://172.30.0.3:9000" serverName=0 serviceName=portainer entryPointName=https routerName=portainer-secure@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Added outgoing tracing middleware portainer" middlewareName=tracing middlewareType=TracingForwarder entryPointName=https routerName=portainer-secure@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" entryPointName=https routerName=portainer-secure@docker middlewareName=portainer-stripprefix@docker middlewareType=StripPrefix | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Adding tracing to middleware" entryPointName=https middlewareName=portainer-stripprefix@docker routerName=portainer-secure@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" entryPointName=https middlewareName=traefik-internal-recovery middlewareType=Recovery | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="No default certificate, generating one" | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)" | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme routerName=traefik-secure@docker | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." providerName=http.acme routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." providerName=http.acme routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)" | |
| time="2020-05-18T14:54:47-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)" providerName=http.acme | |
| time="2020-05-18T14:54:48-04:00" level=debug msg="Serving default certificate for request: \"dgdocker3.grinnell.edu\"" | |
| time="2020-05-18T14:54:48-04:00" level=debug msg="http: TLS handshake error from 132.161.249.72:62743: remote error: tls: bad certificate" | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Provider event received {Status:start ID:0ec57ee9523ed37320cecdbc5a9618d0b38d7d3c7a1370621649ae6424aeb78a From:mcfatem/dgdocker3-landing:latest Type:container Action:start Actor:{ID:0ec57ee9523ed37320cecdbc5a9618d0b38d7d3c7a1370621649ae6424aeb78a Attributes:map[authors:Mark A. McFate <mcfatem@grinnell.edu> com.centurylinklabs.watchtower.enable:true com.docker.compose.config-hash:a39b0a03f4261ad33db2e073da6628e755c4885c6253cb8ea41995731e7edf57 com.docker.compose.container-number:1 com.docker.compose.oneoff:False com.docker.compose.project:landing com.docker.compose.project.config_files:docker-compose.yml com.docker.compose.project.working_dir:/opt/containers/landing com.docker.compose.service:landing com.docker.compose.version:1.25.1 image:mcfatem/dgdocker3-landing:latest maintainer:NGINX Docker Maintainers <docker-maint@nginx.com> name:landing-page traefik.docker.network:proxy traefik.enable:true traefik.http.routers.landing-secure.entrypoints:https traefik.http.routers.landing-secure.rule:Host(`dgdocker3.grinnell.edu`) traefik.http.routers.landing-secure.service:landing-landing traefik.http.routers.landing-secure.tls:true traefik.http.routers.landing-secure.tls.certresolver:http]} Scope:local Time:1589828091 TimeNano:1589828091237381537}" providerName=docker | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Filtering disabled container" providerName=docker container=watchtower-watchtower-39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Configuration received from provider docker: {\"http\":{\"routers\":{\"http-catchall\":{\"entryPoints\":[\"http\"],\"middlewares\":[\"redirect-to-https\"],\"service\":\"traefik-traefik\",\"rule\":\"hostregexp(`{host:[a-z-.]+}`)\"},\"landing-secure\":{\"entryPoints\":[\"https\"],\"service\":\"landing-landing\",\"rule\":\"Host(`dgdocker3.grinnell.edu`)\",\"tls\":{\"certResolver\":\"http\"}},\"portainer-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"portainer-stripprefix\"],\"service\":\"portainer\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 PathPrefix(`/portainer`)\",\"tls\":{\"certResolver\":\"http\"}},\"traefik-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"traefik-auth\"],\"service\":\"api@internal\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 (PathPrefix(`/api`) || PathPrefix(`/dashboard`))\",\"tls\":{\"certResolver\":\"http\"}}},\"services\":{\"landing-landing\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.4:80\"}],\"passHostHeader\":true}},\"portainer\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.3:9000\"}],\"passHostHeader\":true}},\"traefik-traefik\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.2:80\"}],\"passHostHeader\":true}}},\"middlewares\":{\"portainer-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}},\"portainer-stripprefix\":{\"stripPrefix\":{\"prefixes\":[\"/portainer\"],\"forceSlash\":true}},\"redirect-to-https\":{\"redirectScheme\":{\"scheme\":\"https\"}},\"traefik-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}}}},\"tcp\":{},\"udp\":{}}" providerName=docker | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" serviceName=traefik-traefik entryPointName=http routerName=http-catchall@docker middlewareName=pipelining middlewareType=Pipelining | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating load-balancer" routerName=http-catchall@docker serviceName=traefik-traefik entryPointName=http | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating server 0 http://172.30.0.2:80" serverName=0 routerName=http-catchall@docker serviceName=traefik-traefik entryPointName=http | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Added outgoing tracing middleware traefik-traefik" routerName=http-catchall@docker middlewareName=tracing middlewareType=TracingForwarder entryPointName=http | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker middlewareType=RedirectScheme | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Setting up redirection to https " middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http routerName=http-catchall@docker | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Adding tracing to middleware" entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" middlewareName=traefik-internal-recovery middlewareType=Recovery entryPointName=http | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" middlewareName=pipelining middlewareType=Pipelining entryPointName=https routerName=landing-secure@docker serviceName=landing-landing | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating load-balancer" entryPointName=https routerName=landing-secure@docker serviceName=landing-landing | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating server 0 http://172.30.0.4:80" entryPointName=https routerName=landing-secure@docker serviceName=landing-landing serverName=0 | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Added outgoing tracing middleware landing-landing" middlewareName=tracing middlewareType=TracingForwarder entryPointName=https routerName=landing-secure@docker | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" serviceName=portainer entryPointName=https routerName=portainer-secure@docker middlewareName=pipelining middlewareType=Pipelining | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating load-balancer" entryPointName=https routerName=portainer-secure@docker serviceName=portainer | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating server 0 http://172.30.0.3:9000" entryPointName=https routerName=portainer-secure@docker serviceName=portainer serverName=0 | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Added outgoing tracing middleware portainer" entryPointName=https routerName=portainer-secure@docker middlewareName=tracing middlewareType=TracingForwarder | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" middlewareName=portainer-stripprefix@docker middlewareType=StripPrefix entryPointName=https routerName=portainer-secure@docker | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Adding tracing to middleware" entryPointName=https routerName=portainer-secure@docker middlewareName=portainer-stripprefix@docker | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Added outgoing tracing middleware api@internal" entryPointName=https routerName=traefik-secure@docker middlewareName=tracing middlewareType=TracingForwarder | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" entryPointName=https routerName=traefik-secure@docker middlewareName=traefik-auth@docker middlewareType=BasicAuth | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Adding tracing to middleware" entryPointName=https routerName=traefik-secure@docker middlewareName=traefik-auth@docker | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" entryPointName=https middlewareName=traefik-internal-recovery middlewareType=Recovery | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="No default certificate, generating one" | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=landing-secure@docker rule="Host(`dgdocker3.grinnell.edu`)" | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)" | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." routerName=landing-secure@docker rule="Host(`dgdocker3.grinnell.edu`)" providerName=http.acme | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." routerName=landing-secure@docker rule="Host(`dgdocker3.grinnell.edu`)" providerName=http.acme | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." providerName=http.acme routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)" | |
| time="2020-05-18T14:54:51-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)" providerName=http.acme routerName=portainer-secure@docker | |
| ...and printing acme.json... | |
| { | |
| "http": { | |
| "Account": { | |
| "Email": "digital@grinnell.edu", | |
| "Registration": { | |
| "body": { | |
| "status": "valid", | |
| "contact": [ | |
| "mailto:digital@grinnell.edu" | |
| ] | |
| }, | |
| "uri": "https://acme-staging-v02.api.letsencrypt.org/acme/acct/13743488" | |
| }, | |
| "PrivateKey": "MIIJKA...HJ/bdeafzo=", | |
| "KeyType": "4096" | |
| }, | |
| "Certificates": null | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment