You're not lying. This is actually the most helpful in depth Traefik guide I came across. And I hadn't seen this video yet, but followed the tutorial on your webpage. It helped me understand a lot of Docker as well, cause I just started with that. Good explanation, thank you.
excellent video. one question though, in my setup i have Traefik and another application (that I want to expose) running in seperate LXC containers. In this case, should I need to create a bridge network in proxmox while creating the container or use host settings for network ? how would Traefik-docker-network be able to access app-docker-network ?
I assume that the app lxc has an IP in the same subnet as the traefik LXC. Then if the the app is exposed to the app lxc network via a port then Traefik should be able to reach it using APP-LXC-IP:PORT. Hope this makes sense. If not, feel free to reach out on Discord. I will help you there.
Amazing tutorial! Thank you so much. Question though, my ISP uses CGNAT and I've had a hard time in the past opening up ports. Is there a workaround for this so I can open 80 and 443?
Thank you. It feels good to get it out. I recorded once and spent nearly 30 hours on it last year but did not publish. This time I recorded it 3 times to get through it without hiccups, crashes, etc. Phew!
Really? Authentik doesn't work very well in a LXC? first time hearing this. I spent over 5 years trying to get authentik to work (docker on LXC) and then gave up just a few days back.
I would love to. But before that I will be covering Authelia and Google Oauth. I tried authentic but had some issues. Someone commented that it does not work in Proxmox LXC. I need to investigate that.
Basic auth won’t work, I get the prompt for user and pass but it won’t allow me to login. If I disable it works fine. How can I fix the middleware issue?
Can i use this After September 2024? I mean Cloudflare with Lets Encrypt for free? Or whats the alternatives. The cloudflare Advanced certificate Manager isn‘t for free.
I had to move away from your traefik script since using traefik to expose Synology DSM for my family to download from it always times out and fails the downloads around the 1GB mark. Nginx Proxy Manager works fine with the same config...so something wrong with Traefik.
@@AnandsLab it doesn’t seem to handle people with slow internet and must reach a timeout on the entry point or something. Nothing I tried could fix it.
its not something you want to rely on. I use NPM, and have issues as I didn't understand it, but in time I'll have it figured out. I haven't got the script to do much for me. I can't get it to auctually install traefik yet ;P lol
Traefik supports various providers. Even if you registered your domain with another registrar, most of them still allow you to use Cloudflare as the DNS. That is all you will have to do.
Can you elaborate? You want to expose Mysql via traefik? using port 443 instead of 3306? I haven't tried that one. Not sure if it is possible. but I think it might be risky to expose mysql openly.
Does anyone know how to get traefik working in a way that it forwards the Real IP of client connections. I tried everything from Forward headers and ProxyProtocol. This seams like a problem everyone has and no solution, it’s a limitation in docker I guess. Any ideas?
I don't understand the focus on Cloudflare. What if i don't wanna use ir have anything to do with CF? Cant use auto https with Traefik then or what? Im using Caddy right now for all my projects. No issues at all. Im just gathering information about Traefik at the moment to see if a migration from caddy to Traefik would be worth it, or if it has any benefits at all.
I use another registrar's DNS servers as well. This video helped me set it up. I made 2 files in /secrets directory. Named them as is needed for my registrar. Each one containing the variable needed for the ACME script. Then pointed to them in the secrets: part of the traefik.yml file. It worked fine.
Constructive criticism Please stop the excessively repeat of watch other videos you made You said it more than a dozen times Add it to a beginning mention it once that is enough Sorry but that was really too much
I get your point. This is a critical video and many people skip sections/chapters. It is important for them to not be lost. I do not do this on other videos.
I think traefik has too many issues to make it useable, I can't get it to foreward a single port. lol The automation is killing it. in a enviroment that is clean and has domains that never used a cert or anything it may just work, but if anything isn't perfect the whole thing crashes... Thats not going to work in a production enviroment.
If you take the time to understand Traefik like you did for NPM, you will have a different opinion. My website, smarthomebeginner.com has been working on Traefik for 4 years and serving 1000s of pages every day. I think that would qualify as a Production environment.
after hours of watching and following different tutorials, I finally got a confirmed SSL cert. But when I try to open the traefik. I get a 404, anything I might have missed that would fix this?
POST PUBLICATION NOTES:
* Traefik is a huge subject. Can't cover everything. But this should get you started.
You're not lying. This is actually the most helpful in depth Traefik guide I came across. And I hadn't seen this video yet, but followed the tutorial on your webpage. It helped me understand a lot of Docker as well, cause I just started with that.
Good explanation, thank you.
Thanks. Reach out on discord if you need any help.
excellent video. one question though, in my setup i have Traefik and another application (that I want to expose) running in seperate LXC containers. In this case, should I need to create a bridge network in proxmox while creating the container or use host settings for network ? how would Traefik-docker-network be able to access app-docker-network ?
I assume that the app lxc has an IP in the same subnet as the traefik LXC. Then if the the app is exposed to the app lxc network via a port then Traefik should be able to reach it using APP-LXC-IP:PORT. Hope this makes sense. If not, feel free to reach out on Discord. I will help you there.
Amazing tutorial! Thank you so much. Question though, my ISP uses CGNAT and I've had a hard time in the past opening up ports. Is there a workaround for this so I can open 80 and 443?
yes there is, cloudflared or ZeroTier.
Thanks! Great Video and Great Guides.
Thanks man. I appreciate it. Good catch there on the picture.
A master piece man thank you
Thank you. It feels good to get it out. I recorded once and spent nearly 30 hours on it last year but did not publish. This time I recorded it 3 times to get through it without hiccups, crashes, etc. Phew!
Traefk in an lxc took me an hour... Finding out authentik doesn't work very well in a lxc... 5 hours. Had to go back to a VM.
Really? Authentik doesn't work very well in a LXC? first time hearing this. I spent over 5 years trying to get authentik to work (docker on LXC) and then gave up just a few days back.
Do you have any video's on setting up Crowdsec ?
I have many detailed guides on crowdsec on my website if you haven't check those out yet. Eventually i will do videos.
Many Thanks , i liked your video can you make video for HAproxy in pfsense
Noted for future!
Great video and got it all working per the video, however unable to access the traefik dashboard via my internal network.....any ideas?
don't worry I reviewed your video again saw you mention enabling the api.insecure=true and it's associated ports. all working now!
nice video! thx for sharing!
Can You do tutorial for authentik + SSO for Home assistant / CalibreWeb etc ?
I would love to. But before that I will be covering Authelia and Google Oauth. I tried authentic but had some issues. Someone commented that it does not work in Proxmox LXC. I need to investigate that.
Fantastic!🎉
Basic auth won’t work, I get the prompt for user and pass but it won’t allow me to login. If I disable it works fine. How can I fix the middleware issue?
Middleware issue or may be your password is not defined properly.
Can i use this After September 2024? I mean Cloudflare with Lets Encrypt for free? Or whats the alternatives. The cloudflare Advanced certificate Manager isn‘t for free.
The September CF change has nothing to do with Traefik. So it should work.
I had to move away from your traefik script since using traefik to expose Synology DSM for my family to download from it always times out and fails the downloads around the 1GB mark. Nginx Proxy Manager works fine with the same config...so something wrong with Traefik.
That is an interesting finding. I have no experience or have not tried that yet.
@@AnandsLab it doesn’t seem to handle people with slow internet and must reach a timeout on the entry point or something. Nothing I tried could fix it.
its not something you want to rely on. I use NPM, and have issues as I didn't understand it, but in time I'll have it figured out. I haven't got the script to do much for me. I can't get it to auctually install traefik yet ;P lol
Traefik is excellent and much more powerful than NPM. The day you understand it, you will realize its full potential.
I do not know if this is has anything do with Traefik though. Have you tried without Traefik (say quickconnect) and were able to handle big files?
What if I dont have a domain registered in cloudflare?
Traefik supports various providers. Even if you registered your domain with another registrar, most of them still allow you to use Cloudflare as the DNS. That is all you will have to do.
Hi, how would I modify the traefik config to use duckDNS opposed to cloudflare?
That is quite difficult to say in just a few words. I will try to create a separate video on it.
does mysql work on treafik
Can you elaborate? You want to expose Mysql via traefik? using port 443 instead of 3306?
I haven't tried that one. Not sure if it is possible. but I think it might be risky to expose mysql openly.
Does anyone know how to get traefik working in a way that it forwards the Real IP of client connections. I tried everything from Forward headers and ProxyProtocol. This seams like a problem everyone has and no solution, it’s a limitation in docker I guess. Any ideas?
Did you try the Traefik real ip plugin?
@@AnandsLab Yes i did., but i wont help. As far as I know from other posts, this is a @flw@ in docker, and how IPv6 is implementet.
I don't understand the focus on Cloudflare. What if i don't wanna use ir have anything to do with CF? Cant use auto https with Traefik then or what?
Im using Caddy right now for all my projects. No issues at all.
Im just gathering information about Traefik at the moment to see if a migration from caddy to Traefik would be worth it, or if it has any benefits at all.
I use another registrar's DNS servers as well. This video helped me set it up. I made 2 files in /secrets directory. Named them as is needed for my registrar. Each one containing the variable needed for the ACME script. Then pointed to them in the secrets: part of the traefik.yml file. It worked fine.
Constructive criticism
Please stop the excessively repeat of watch other videos you made
You said it more than a dozen times
Add it to a beginning mention it once that is enough
Sorry but that was really too much
I get your point. This is a critical video and many people skip sections/chapters. It is important for them to not be lost. I do not do this on other videos.
@@AnandsLab i understand
but thats their fault not yours
you have good content and solid explanations
dont give in to other peoples laziness
I think traefik has too many issues to make it useable, I can't get it to foreward a single port. lol The automation is killing it. in a enviroment that is clean and has domains that never used a cert or anything it may just work, but if anything isn't perfect the whole thing crashes... Thats not going to work in a production enviroment.
If you take the time to understand Traefik like you did for NPM, you will have a different opinion. My website, smarthomebeginner.com has been working on Traefik for 4 years and serving 1000s of pages every day. I think that would qualify as a Production environment.
after hours of watching and following different tutorials, I finally got a confirmed SSL cert. But when I try to open the traefik. I get a 404, anything I might have missed that would fix this?
There could be many things. Please reach out on Discord for help :-)