Skip to content

Instantly share code, notes, and snippets.

@McFateM
Last active May 18, 2020 18:55
Show Gist options
  • Save McFateM/b525152c822cdb3dd85d5214c06b1d8e to your computer and use it in GitHub Desktop.
Save McFateM/b525152c822cdb3dd85d5214c06b1d8e to your computer and use it in GitHub Desktop.
DGDocker3 Test 7 - DNS-01 Challenge with LE Staging
b10d0e21122445a899dfe3fdbfef73a5982adcfd2ba8d8946b8dde124e098303
Pulling traefik (traefik:2.2.1)...
2.2.1: Pulling from library/traefik
cbdbe7a5bc2a: Pull complete
f16506d32a25: Pull complete
2be216d464d0: Pull complete
aed51f08b610: Pull complete
Digest: sha256:ad4442a6f88cf35266542588f13ae9984aa058a55a518a87876e48c160d19ee0
Status: Downloaded newer image for traefik:2.2.1
Creating traefik ... done
Attaching to traefik
traefik | time="2020-05-18T14:54:38-04:00" level=info msg="Configuration loaded from file: /traefik.yml"
Creating network "watchtower_default" with the default driver
Pulling watchtower (containrrr/watchtower:)...
latest: Pulling from containrrr/watchtower
c4b177d7cf7a: Pull complete
676d5222541c: Pull complete
00dbe20f4a5b: Pull complete
Digest: sha256:76fb863ea0c513d870f8634a13e061f81c387a62ecc27ad64f9b06179181c394
Status: Downloaded newer image for containrrr/watchtower:latest
Creating watchtower ... done
Attaching to watchtower
Pulling portainer (portainer/portainer:1.23.2)...
1.23.2: Pulling from portainer/portainer
d1e017099d17: Pull complete
a7dca5b5a9e8: Pull complete
Digest: sha256:4ae7f14330b56ffc8728e63d355bc4bc7381417fa45ba0597e5dd32682901080
Status: Downloaded newer image for portainer/portainer:1.23.2
Creating portainer ... done
Attaching to portainer
portainer | 2020/05/18 14:54:47 Templates already registered inside the database. Skipping template import.
portainer | 2020/05/18 14:54:47 Starting Portainer 1.23.2 on :9000
portainer | 2020/05/18 14:54:47 [DEBUG] [chisel, monitoring] [check_interval_seconds: 10.000000] [message: starting tunnel management process]
portainer | 2020/05/18 14:54:47 server: Reverse tunnelling enabled
portainer | 2020/05/18 14:54:47 server: Fingerprint 83:bd:ad:29:c2:df:9d:7c:fc:e9:2f:b2:f3:00:4b:9d
portainer | 2020/05/18 14:54:47 server: Listening on 0.0.0.0:8000...
Pulling landing (mcfatem/dgdocker3-landing:latest)...
latest: Pulling from mcfatem/dgdocker3-landing
4167d3e14976: Pull complete
bb292c78f105: Pull complete
cdc9787ad2b6: Pull complete
Digest: sha256:438163c532d9070317640f91d0038a9223f9dc4012d870d2b890e37af1748e02
Status: Downloaded newer image for mcfatem/dgdocker3-landing:latest
Creating landing-page ... done
Attaching to landing-page
Dumping traefik.log...
time="2020-05-18T14:54:38-04:00" level=info msg="Traefik version 2.2.1 built on 2020-04-29T18:02:09Z"
time="2020-05-18T14:54:38-04:00" level=debug msg="Static configuration loaded {\"global\":{\"checkNewVersion\":true},\"serversTransport\":{\"maxIdleConnsPerHost\":200},\"entryPoints\":{\"http\":{\"address\":\":80\",\"transport\":{\"lifeCycle\":{\"graceTimeOut\":10000000000},\"respondingTimeouts\":{\"idleTimeout\":180000000000}},\"forwardedHeaders\":{},\"http\":{}},\"https\":{\"address\":\":443\",\"transport\":{\"lifeCycle\":{\"graceTimeOut\":10000000000},\"respondingTimeouts\":{\"idleTimeout\":180000000000}},\"forwardedHeaders\":{},\"http\":{}}},\"providers\":{\"providersThrottleDuration\":2000000000,\"docker\":{\"watch\":true,\"endpoint\":\"unix:///var/run/docker.sock\",\"defaultRule\":\"Host(`{{ normalize .Name }}`)\",\"swarmModeRefreshSeconds\":15000000000}},\"api\":{\"dashboard\":true},\"log\":{\"level\":\"DEBUG\",\"filePath\":\"/var/log/traefik.log\",\"format\":\"common\"},\"certificatesResolvers\":{\"http\":{\"acme\":{\"email\":\"digital@grinnell.edu\",\"caServer\":\"https://acme-staging-v02.api.letsencrypt.org/directory\",\"storage\":\"acme.json\",\"keyType\":\"RSA4096\",\"dnsChallenge\":{\"provider\":\"azure\"}}}}}"
time="2020-05-18T14:54:38-04:00" level=info msg="\nStats collection is disabled.\nHelp us improve Traefik by turning this feature on :)\nMore details on: https://docs.traefik.io/contributing/data-collection/\n"
time="2020-05-18T14:54:38-04:00" level=info msg="Starting provider aggregator.ProviderAggregator {}"
time="2020-05-18T14:54:38-04:00" level=debug msg="Start TCP Server" entryPointName=https
time="2020-05-18T14:54:38-04:00" level=debug msg="Start TCP Server" entryPointName=http
time="2020-05-18T14:54:38-04:00" level=info msg="Starting provider *acme.Provider {\"email\":\"digital@grinnell.edu\",\"caServer\":\"https://acme-staging-v02.api.letsencrypt.org/directory\",\"storage\":\"acme.json\",\"keyType\":\"RSA4096\",\"dnsChallenge\":{\"provider\":\"azure\"},\"ResolverName\":\"http\",\"store\":{},\"ChallengeStore\":{}}"
time="2020-05-18T14:54:38-04:00" level=info msg="Testing certificate renew..." providerName=http.acme
time="2020-05-18T14:54:38-04:00" level=info msg="Starting provider *docker.Provider {\"watch\":true,\"endpoint\":\"unix:///var/run/docker.sock\",\"defaultRule\":\"Host(`{{ normalize .Name }}`)\",\"swarmModeRefreshSeconds\":15000000000}"
time="2020-05-18T14:54:38-04:00" level=info msg="Starting provider *traefik.Provider {}"
time="2020-05-18T14:54:38-04:00" level=debug msg="Configuration received from provider http.acme: {\"http\":{},\"tls\":{}}" providerName=http.acme
time="2020-05-18T14:54:38-04:00" level=debug msg="Configuration received from provider internal: {\"http\":{\"services\":{\"api\":{},\"dashboard\":{},\"noop\":{}}},\"tcp\":{},\"tls\":{}}" providerName=internal
time="2020-05-18T14:54:38-04:00" level=debug msg="No default certificate, generating one"
time="2020-05-18T14:54:38-04:00" level=debug msg="Provider connection established with docker 19.03.8 (API 1.40)" providerName=docker
time="2020-05-18T14:54:38-04:00" level=debug msg="Configuration received from provider docker: {\"http\":{\"routers\":{\"http-catchall\":{\"entryPoints\":[\"http\"],\"middlewares\":[\"redirect-to-https\"],\"service\":\"traefik-traefik\",\"rule\":\"hostregexp(`{host:[a-z-.]+}`)\"},\"traefik-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"traefik-auth\"],\"service\":\"api@internal\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 (PathPrefix(`/api`) || PathPrefix(`/dashboard`))\",\"tls\":{\"certResolver\":\"http\"}}},\"services\":{\"traefik-traefik\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.2:80\"}],\"passHostHeader\":true}}},\"middlewares\":{\"redirect-to-https\":{\"redirectScheme\":{\"scheme\":\"https\"}},\"traefik-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}}}},\"tcp\":{},\"udp\":{}}" providerName=docker
time="2020-05-18T14:54:38-04:00" level=debug msg="No default certificate, generating one"
time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" middlewareType=Pipelining entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik middlewareName=pipelining
time="2020-05-18T14:54:39-04:00" level=debug msg="Creating load-balancer" entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik
time="2020-05-18T14:54:39-04:00" level=debug msg="Creating server 0 http://172.30.0.2:80" entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik serverName=0
time="2020-05-18T14:54:39-04:00" level=debug msg="Added outgoing tracing middleware traefik-traefik" entryPointName=http routerName=http-catchall@docker middlewareName=tracing middlewareType=TracingForwarder
time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http routerName=http-catchall@docker
time="2020-05-18T14:54:39-04:00" level=debug msg="Setting up redirection to https " middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http routerName=http-catchall@docker
time="2020-05-18T14:54:39-04:00" level=debug msg="Adding tracing to middleware" middlewareName=redirect-to-https@docker routerName=http-catchall@docker entryPointName=http
time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" middlewareType=Recovery entryPointName=http middlewareName=traefik-internal-recovery
time="2020-05-18T14:54:39-04:00" level=debug msg="Added outgoing tracing middleware api@internal" routerName=traefik-secure@docker middlewareName=tracing middlewareType=TracingForwarder entryPointName=https
time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" middlewareName=traefik-auth@docker middlewareType=BasicAuth routerName=traefik-secure@docker entryPointName=https
time="2020-05-18T14:54:39-04:00" level=debug msg="Adding tracing to middleware" routerName=traefik-secure@docker middlewareName=traefik-auth@docker entryPointName=https
time="2020-05-18T14:54:39-04:00" level=debug msg="Creating middleware" entryPointName=https middlewareName=traefik-internal-recovery middlewareType=Recovery
time="2020-05-18T14:54:39-04:00" level=debug msg="No default certificate, generating one"
time="2020-05-18T14:54:39-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" routerName=traefik-secure@docker
time="2020-05-18T14:54:39-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" routerName=traefik-secure@docker providerName=http.acme
time="2020-05-18T14:54:39-04:00" level=debug msg="Domains [\"dgdocker3.grinnell.edu\"] need ACME certificates generation for domains \"dgdocker3.grinnell.edu\"." providerName=http.acme rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" routerName=traefik-secure@docker
time="2020-05-18T14:54:39-04:00" level=debug msg="Loading ACME certificates [dgdocker3.grinnell.edu]..." providerName=http.acme rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" routerName=traefik-secure@docker
time="2020-05-18T14:54:40-04:00" level=debug msg="Building ACME client..." providerName=http.acme
time="2020-05-18T14:54:40-04:00" level=debug msg="https://acme-staging-v02.api.letsencrypt.org/directory" providerName=http.acme
time="2020-05-18T14:54:40-04:00" level=info msg=Register... providerName=http.acme
time="2020-05-18T14:54:40-04:00" level=debug msg="legolog: [INFO] acme: Registering account for digital@grinnell.edu"
time="2020-05-18T14:54:41-04:00" level=debug msg="Using DNS Challenge provider: azure" providerName=http.acme
time="2020-05-18T14:54:42-04:00" level=debug msg="Provider event received {Status:start ID:39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc From:containrrr/watchtower Type:container Action:start Actor:{ID:39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc Attributes:map[com.centurylinklabs.watchtower:true com.docker.compose.config-hash:fbbe98cabf78ab96e8f6c95d30f40d10c2185984ec046d8e8be402879e831396 com.docker.compose.container-number:1 com.docker.compose.oneoff:False com.docker.compose.project:watchtower com.docker.compose.project.config_files:docker-compose.yml com.docker.compose.project.working_dir:/opt/containers/watchtower com.docker.compose.service:watchtower com.docker.compose.version:1.25.1 image:containrrr/watchtower name:watchtower traefik.enable:false]} Scope:local Time:1589828082 TimeNano:1589828082414088607}" providerName=docker
time="2020-05-18T14:54:42-04:00" level=debug msg="Filtering disabled container" providerName=docker container=watchtower-watchtower-39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc
time="2020-05-18T14:54:42-04:00" level=debug msg="Configuration received from provider docker: {\"http\":{\"routers\":{\"http-catchall\":{\"entryPoints\":[\"http\"],\"middlewares\":[\"redirect-to-https\"],\"service\":\"traefik-traefik\",\"rule\":\"hostregexp(`{host:[a-z-.]+}`)\"},\"traefik-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"traefik-auth\"],\"service\":\"api@internal\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 (PathPrefix(`/api`) || PathPrefix(`/dashboard`))\",\"tls\":{\"certResolver\":\"http\"}}},\"services\":{\"traefik-traefik\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.2:80\"}],\"passHostHeader\":true}}},\"middlewares\":{\"redirect-to-https\":{\"redirectScheme\":{\"scheme\":\"https\"}},\"traefik-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}}}},\"tcp\":{},\"udp\":{}}" providerName=docker
time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" routerName=http-catchall@docker serviceName=traefik-traefik middlewareName=pipelining middlewareType=Pipelining entryPointName=http
time="2020-05-18T14:54:42-04:00" level=debug msg="Creating load-balancer" entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik
time="2020-05-18T14:54:42-04:00" level=debug msg="Creating server 0 http://172.30.0.2:80" entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik serverName=0
time="2020-05-18T14:54:42-04:00" level=debug msg="Added outgoing tracing middleware traefik-traefik" entryPointName=http routerName=http-catchall@docker middlewareName=tracing middlewareType=TracingForwarder
time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" routerName=http-catchall@docker middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http
time="2020-05-18T14:54:42-04:00" level=debug msg="Setting up redirection to https " routerName=http-catchall@docker middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http
time="2020-05-18T14:54:42-04:00" level=debug msg="Adding tracing to middleware" entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker
time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" middlewareName=traefik-internal-recovery middlewareType=Recovery entryPointName=http
time="2020-05-18T14:54:42-04:00" level=debug msg="Added outgoing tracing middleware api@internal" routerName=traefik-secure@docker middlewareName=tracing middlewareType=TracingForwarder entryPointName=https
time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" entryPointName=https routerName=traefik-secure@docker middlewareName=traefik-auth@docker middlewareType=BasicAuth
time="2020-05-18T14:54:42-04:00" level=debug msg="Adding tracing to middleware" middlewareName=traefik-auth@docker entryPointName=https routerName=traefik-secure@docker
time="2020-05-18T14:54:42-04:00" level=debug msg="Creating middleware" middlewareName=traefik-internal-recovery middlewareType=Recovery entryPointName=https
time="2020-05-18T14:54:42-04:00" level=debug msg="No default certificate, generating one"
time="2020-05-18T14:54:42-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))"
time="2020-05-18T14:54:42-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme
time="2020-05-18T14:54:42-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." providerName=http.acme routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))"
time="2020-05-18T14:54:43-04:00" level=debug msg="Serving default certificate for request: \"dgdocker3.grinnell.edu\""
time="2020-05-18T14:54:43-04:00" level=debug msg="http: TLS handshake error from 132.161.249.72:62734: remote error: tls: bad certificate"
time="2020-05-18T14:54:47-04:00" level=debug msg="Provider event received {Status:start ID:d727615d6a6282a71e880c23118a10329d6e64bb3a9fc41ad59575939a11885f From:portainer/portainer:1.23.2 Type:container Action:start Actor:{ID:d727615d6a6282a71e880c23118a10329d6e64bb3a9fc41ad59575939a11885f Attributes:map[com.docker.compose.config-hash:10b9bdf905a02c8bf5f41b256ff7ae09846614afbecb9dcc4e2e06c954f4914f com.docker.compose.container-number:1 com.docker.compose.oneoff:False com.docker.compose.project:portainer com.docker.compose.project.config_files:docker-compose.yml com.docker.compose.project.working_dir:/opt/containers/portainer com.docker.compose.service:portainer com.docker.compose.version:1.25.1 image:portainer/portainer:1.23.2 name:portainer traefik.docker.network:proxy traefik.enable:true traefik.http.middlewares.portainer-auth.basicauth.users:admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy traefik.http.middlewares.portainer-stripprefix.stripprefix.prefixes:/portainer traefik.http.routers.portainer-secure.entrypoints:https traefik.http.routers.portainer-secure.middlewares:portainer-stripprefix traefik.http.routers.portainer-secure.rule:Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`) traefik.http.routers.portainer-secure.service:portainer traefik.http.routers.portainer-secure.tls:true traefik.http.routers.portainer-secure.tls.certresolver:http traefik.http.services.portainer.loadbalancer.server.port:9000]} Scope:local Time:1589828087 TimeNano:1589828087457231546}" providerName=docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Filtering disabled container" providerName=docker container=watchtower-watchtower-39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc
time="2020-05-18T14:54:47-04:00" level=debug msg="Configuration received from provider docker: {\"http\":{\"routers\":{\"http-catchall\":{\"entryPoints\":[\"http\"],\"middlewares\":[\"redirect-to-https\"],\"service\":\"traefik-traefik\",\"rule\":\"hostregexp(`{host:[a-z-.]+}`)\"},\"portainer-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"portainer-stripprefix\"],\"service\":\"portainer\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 PathPrefix(`/portainer`)\",\"tls\":{\"certResolver\":\"http\"}},\"traefik-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"traefik-auth\"],\"service\":\"api@internal\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 (PathPrefix(`/api`) || PathPrefix(`/dashboard`))\",\"tls\":{\"certResolver\":\"http\"}}},\"services\":{\"portainer\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.3:9000\"}],\"passHostHeader\":true}},\"traefik-traefik\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.2:80\"}],\"passHostHeader\":true}}},\"middlewares\":{\"portainer-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}},\"portainer-stripprefix\":{\"stripPrefix\":{\"prefixes\":[\"/portainer\"],\"forceSlash\":true}},\"redirect-to-https\":{\"redirectScheme\":{\"scheme\":\"https\"}},\"traefik-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}}}},\"tcp\":{},\"udp\":{}}" providerName=docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" middlewareType=Pipelining entryPointName=http routerName=http-catchall@docker serviceName=traefik-traefik middlewareName=pipelining
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating load-balancer" routerName=http-catchall@docker serviceName=traefik-traefik entryPointName=http
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating server 0 http://172.30.0.2:80" serviceName=traefik-traefik entryPointName=http routerName=http-catchall@docker serverName=0
time="2020-05-18T14:54:47-04:00" level=debug msg="Added outgoing tracing middleware traefik-traefik" routerName=http-catchall@docker entryPointName=http middlewareName=tracing middlewareType=TracingForwarder
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http routerName=http-catchall@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Setting up redirection to https " entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker middlewareType=RedirectScheme
time="2020-05-18T14:54:47-04:00" level=debug msg="Adding tracing to middleware" entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" entryPointName=http middlewareName=traefik-internal-recovery middlewareType=Recovery
time="2020-05-18T14:54:47-04:00" level=debug msg="Added outgoing tracing middleware api@internal" entryPointName=https routerName=traefik-secure@docker middlewareType=TracingForwarder middlewareName=tracing
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" middlewareName=traefik-auth@docker middlewareType=BasicAuth entryPointName=https routerName=traefik-secure@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Adding tracing to middleware" entryPointName=https routerName=traefik-secure@docker middlewareName=traefik-auth@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" middlewareType=Pipelining entryPointName=https routerName=portainer-secure@docker serviceName=portainer middlewareName=pipelining
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating load-balancer" serviceName=portainer entryPointName=https routerName=portainer-secure@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating server 0 http://172.30.0.3:9000" serverName=0 serviceName=portainer entryPointName=https routerName=portainer-secure@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Added outgoing tracing middleware portainer" middlewareName=tracing middlewareType=TracingForwarder entryPointName=https routerName=portainer-secure@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" entryPointName=https routerName=portainer-secure@docker middlewareName=portainer-stripprefix@docker middlewareType=StripPrefix
time="2020-05-18T14:54:47-04:00" level=debug msg="Adding tracing to middleware" entryPointName=https middlewareName=portainer-stripprefix@docker routerName=portainer-secure@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="Creating middleware" entryPointName=https middlewareName=traefik-internal-recovery middlewareType=Recovery
time="2020-05-18T14:54:47-04:00" level=debug msg="No default certificate, generating one"
time="2020-05-18T14:54:47-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)"
time="2020-05-18T14:54:47-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme
time="2020-05-18T14:54:47-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme routerName=traefik-secure@docker
time="2020-05-18T14:54:47-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." providerName=http.acme routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))"
time="2020-05-18T14:54:47-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." providerName=http.acme routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)"
time="2020-05-18T14:54:47-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)" providerName=http.acme
time="2020-05-18T14:54:48-04:00" level=debug msg="Serving default certificate for request: \"dgdocker3.grinnell.edu\""
time="2020-05-18T14:54:48-04:00" level=debug msg="http: TLS handshake error from 132.161.249.72:62743: remote error: tls: bad certificate"
time="2020-05-18T14:54:51-04:00" level=debug msg="Provider event received {Status:start ID:0ec57ee9523ed37320cecdbc5a9618d0b38d7d3c7a1370621649ae6424aeb78a From:mcfatem/dgdocker3-landing:latest Type:container Action:start Actor:{ID:0ec57ee9523ed37320cecdbc5a9618d0b38d7d3c7a1370621649ae6424aeb78a Attributes:map[authors:Mark A. McFate <mcfatem@grinnell.edu> com.centurylinklabs.watchtower.enable:true com.docker.compose.config-hash:a39b0a03f4261ad33db2e073da6628e755c4885c6253cb8ea41995731e7edf57 com.docker.compose.container-number:1 com.docker.compose.oneoff:False com.docker.compose.project:landing com.docker.compose.project.config_files:docker-compose.yml com.docker.compose.project.working_dir:/opt/containers/landing com.docker.compose.service:landing com.docker.compose.version:1.25.1 image:mcfatem/dgdocker3-landing:latest maintainer:NGINX Docker Maintainers <docker-maint@nginx.com> name:landing-page traefik.docker.network:proxy traefik.enable:true traefik.http.routers.landing-secure.entrypoints:https traefik.http.routers.landing-secure.rule:Host(`dgdocker3.grinnell.edu`) traefik.http.routers.landing-secure.service:landing-landing traefik.http.routers.landing-secure.tls:true traefik.http.routers.landing-secure.tls.certresolver:http]} Scope:local Time:1589828091 TimeNano:1589828091237381537}" providerName=docker
time="2020-05-18T14:54:51-04:00" level=debug msg="Filtering disabled container" providerName=docker container=watchtower-watchtower-39a61efdd9f23fd100473b90d63d84d194612c79cef153bb50c2f26abd6ce0cc
time="2020-05-18T14:54:51-04:00" level=debug msg="Configuration received from provider docker: {\"http\":{\"routers\":{\"http-catchall\":{\"entryPoints\":[\"http\"],\"middlewares\":[\"redirect-to-https\"],\"service\":\"traefik-traefik\",\"rule\":\"hostregexp(`{host:[a-z-.]+}`)\"},\"landing-secure\":{\"entryPoints\":[\"https\"],\"service\":\"landing-landing\",\"rule\":\"Host(`dgdocker3.grinnell.edu`)\",\"tls\":{\"certResolver\":\"http\"}},\"portainer-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"portainer-stripprefix\"],\"service\":\"portainer\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 PathPrefix(`/portainer`)\",\"tls\":{\"certResolver\":\"http\"}},\"traefik-secure\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"traefik-auth\"],\"service\":\"api@internal\",\"rule\":\"Host(`dgdocker3.grinnell.edu`) \\u0026\\u0026 (PathPrefix(`/api`) || PathPrefix(`/dashboard`))\",\"tls\":{\"certResolver\":\"http\"}}},\"services\":{\"landing-landing\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.4:80\"}],\"passHostHeader\":true}},\"portainer\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.3:9000\"}],\"passHostHeader\":true}},\"traefik-traefik\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http://172.30.0.2:80\"}],\"passHostHeader\":true}}},\"middlewares\":{\"portainer-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}},\"portainer-stripprefix\":{\"stripPrefix\":{\"prefixes\":[\"/portainer\"],\"forceSlash\":true}},\"redirect-to-https\":{\"redirectScheme\":{\"scheme\":\"https\"}},\"traefik-auth\":{\"basicAuth\":{\"users\":[\"admin:$2y$05$pJEzHJBzfoYYS7/hGAedcOP8XdsqNXE7j.LHFBVjueASOqOvvjGOy\"]}}}},\"tcp\":{},\"udp\":{}}" providerName=docker
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" serviceName=traefik-traefik entryPointName=http routerName=http-catchall@docker middlewareName=pipelining middlewareType=Pipelining
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating load-balancer" routerName=http-catchall@docker serviceName=traefik-traefik entryPointName=http
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating server 0 http://172.30.0.2:80" serverName=0 routerName=http-catchall@docker serviceName=traefik-traefik entryPointName=http
time="2020-05-18T14:54:51-04:00" level=debug msg="Added outgoing tracing middleware traefik-traefik" routerName=http-catchall@docker middlewareName=tracing middlewareType=TracingForwarder entryPointName=http
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker middlewareType=RedirectScheme
time="2020-05-18T14:54:51-04:00" level=debug msg="Setting up redirection to https " middlewareName=redirect-to-https@docker middlewareType=RedirectScheme entryPointName=http routerName=http-catchall@docker
time="2020-05-18T14:54:51-04:00" level=debug msg="Adding tracing to middleware" entryPointName=http routerName=http-catchall@docker middlewareName=redirect-to-https@docker
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" middlewareName=traefik-internal-recovery middlewareType=Recovery entryPointName=http
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" middlewareName=pipelining middlewareType=Pipelining entryPointName=https routerName=landing-secure@docker serviceName=landing-landing
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating load-balancer" entryPointName=https routerName=landing-secure@docker serviceName=landing-landing
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating server 0 http://172.30.0.4:80" entryPointName=https routerName=landing-secure@docker serviceName=landing-landing serverName=0
time="2020-05-18T14:54:51-04:00" level=debug msg="Added outgoing tracing middleware landing-landing" middlewareName=tracing middlewareType=TracingForwarder entryPointName=https routerName=landing-secure@docker
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" serviceName=portainer entryPointName=https routerName=portainer-secure@docker middlewareName=pipelining middlewareType=Pipelining
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating load-balancer" entryPointName=https routerName=portainer-secure@docker serviceName=portainer
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating server 0 http://172.30.0.3:9000" entryPointName=https routerName=portainer-secure@docker serviceName=portainer serverName=0
time="2020-05-18T14:54:51-04:00" level=debug msg="Added outgoing tracing middleware portainer" entryPointName=https routerName=portainer-secure@docker middlewareName=tracing middlewareType=TracingForwarder
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" middlewareName=portainer-stripprefix@docker middlewareType=StripPrefix entryPointName=https routerName=portainer-secure@docker
time="2020-05-18T14:54:51-04:00" level=debug msg="Adding tracing to middleware" entryPointName=https routerName=portainer-secure@docker middlewareName=portainer-stripprefix@docker
time="2020-05-18T14:54:51-04:00" level=debug msg="Added outgoing tracing middleware api@internal" entryPointName=https routerName=traefik-secure@docker middlewareName=tracing middlewareType=TracingForwarder
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" entryPointName=https routerName=traefik-secure@docker middlewareName=traefik-auth@docker middlewareType=BasicAuth
time="2020-05-18T14:54:51-04:00" level=debug msg="Adding tracing to middleware" entryPointName=https routerName=traefik-secure@docker middlewareName=traefik-auth@docker
time="2020-05-18T14:54:51-04:00" level=debug msg="Creating middleware" entryPointName=https middlewareName=traefik-internal-recovery middlewareType=Recovery
time="2020-05-18T14:54:51-04:00" level=debug msg="No default certificate, generating one"
time="2020-05-18T14:54:51-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=landing-secure@docker rule="Host(`dgdocker3.grinnell.edu`)"
time="2020-05-18T14:54:51-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)"
time="2020-05-18T14:54:51-04:00" level=debug msg="Try to challenge certificate for domain [dgdocker3.grinnell.edu] found in HostSNI rule" providerName=http.acme routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))"
time="2020-05-18T14:54:51-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme
time="2020-05-18T14:54:51-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." routerName=traefik-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))" providerName=http.acme
time="2020-05-18T14:54:51-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." routerName=landing-secure@docker rule="Host(`dgdocker3.grinnell.edu`)" providerName=http.acme
time="2020-05-18T14:54:51-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." routerName=landing-secure@docker rule="Host(`dgdocker3.grinnell.edu`)" providerName=http.acme
time="2020-05-18T14:54:51-04:00" level=debug msg="Looking for provided certificate(s) to validate [\"dgdocker3.grinnell.edu\"]..." providerName=http.acme routerName=portainer-secure@docker rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)"
time="2020-05-18T14:54:51-04:00" level=debug msg="No ACME certificate generation required for domains [\"dgdocker3.grinnell.edu\"]." rule="Host(`dgdocker3.grinnell.edu`) && PathPrefix(`/portainer`)" providerName=http.acme routerName=portainer-secure@docker
...and printing acme.json...
{
"http": {
"Account": {
"Email": "digital@grinnell.edu",
"Registration": {
"body": {
"status": "valid",
"contact": [
"mailto:digital@grinnell.edu"
]
},
"uri": "https://acme-staging-v02.api.letsencrypt.org/acme/acct/13743488"
},
"PrivateKey": "MIIJKA...HJ/bdeafzo=",
"KeyType": "4096"
},
"Certificates": null
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment