-
Notifications
You must be signed in to change notification settings - Fork 27
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Traefik appends a tls
route even when tls
routes are explicitly provided
#430
Comments
This was first introduced as part of #100, Trying on grafana which passes tls configs on its own gives the below results,
the duplicate tls route is redundant in this case, yet we need to investigate if anything breaks on |
We are experiencing a similar issue. The fix provided in #425 resolves the problem for Wazuh enrollment connections, but the Wazuh agent connection wire protocol is not based on TLS. The addition of the What we want is a way to configure Traefik so that the configuration places in |
@IbraAoad The issue mentioned by Weii in his comment is currently blocking us for Wazuh deployment as it avoid Wazuh information to get from the agent to the server. |
We're prioritizing this issue, but wont have it done before christmas breaks. ETA is to pick it up at the start of January, but it might take a few days of thinking to figure out. |
For every route, the previous code created a duplicate route
ROUTENAME-tls
for the samerule
andservice
but with additional TLS configuration. Both applied to the samerule
and thus conflict, and the newROUTENAME-tls
route takes precedence over the originalROUTENAME
because its name is longer. Prior to #425 this worked fine because we wanted to useROUTENAME-tls
in all cases.The updated code here avoids making the second
-tls
route in the specific case where the route includestls: passthrough: true
.Have we really solved the broader problem here, or narrowly fixed #425? Two questions come to mind:
submit_to_traefik
? If so, the same issue as Skip tls config when passthrough is enabled #425 will occurOriginally posted by @ca-scribner in #429 (comment)
The text was updated successfully, but these errors were encountered: