我正在使用复杂的Traefik - Dropcart设置,通过Let's Encrypt自动进行SSL认证。由于TLS-SNI终止,我切换到了支持HTTP-SNI的让我们加密的rc5 Docker版本,DNS不是我的选择。 不幸的是,它给出了400超时错误(参见日志)。
配置
[entryPoints]
[entryPoints.http]
address = ":80"
[entryPoints.http.redirect]
entryPoint = "https"
compress = true
[entryPoints.https]
address = ":443"
[entryPoints.https.tls]
[...]
[acme]
email = "email@address.com"
caServer = "https://acme-staging.api.letsencrypt.org/directory"
storage = "/etc/traefik/acme/acme.json"
entryPoint = "https"
onHostRule = true
acmeLogging = true
#dnsProvider = "manual"
[acme.httpChallenge]
entryPoint = "http"
日志
domain.example.com:acme: Error 400 - urn:acme:error:connection -
Fetching http://domain.example.com/.well-known/acme-challenge/5uyEKpgr[...]c4CfMOZjc: Timeout
Error Detail:
Validation for domain.example.com:80
Resolved to:
*IPv4*
*IPv6*
Used: *IPv6*
]"
有谁知道我如何修复HTTP验证?
谢谢!
编辑: 相同的配置似乎适用于领事后端。那么可能与Docker或acme.json有关吗?