Changing Lets Encrypt domain - Traefik

Initially, I have setup snap Nextcloud on Ubuntu 20.04 desktop and ran below command to enable SSL using Let’s encrypt. I was using free no-ip hostname gopinathcloud.onthewifi.com

nextcloud.enable-https lets-encrpt

In the hope of moving everything to docker, I have brought a domain (gopinath.dev) and uninstalled NextCloud. I have setup traefik with let’s encrypt to new domain using docker-compose (using gopinath.dev). I’m having following hankshake message in traefik logs

Serving default certificate for request: "gopinathcloud.onthewifi.com
http: TLS handshake error from 24.27.84.157:39272: remote error: tls: unknown certificate

How can I change Let’s encrypt domain?. I’m not sure if I can use certbot with Traefik.
I also noticed that ***.onthewifi.com now has “TRAEFIK DEFAULT CERT” certificate

My domain is:
old - gopinathcloud.onthewifi.com
new - gopinath.dev

I ran this command:
old - nextcloud.enable-https lets-encrpt
new - traefik docker compose certificatesresolvers.mytlschallenge.acme

It produced this output:
Serving default certificate for request: "gopinathcloud.onthewifi.com
http: TLS handshake error from 24.27.84.157:39272: remote error: tls: unknown certificate

My web server is (include version):
Traefik 2.0.7 (Not sure if Traefik considered as web server)

The operating system my web server runs on is (include version):
Ubuntu Desktop 20.04

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
certbot 0.40.0 (I haven’t used certbot while setting up NextCloud or traefik)

Hi,

Can you please take a look at this one?

The user seems to have similar log entry like you do.

Thanks Steven, I strongly believe its problem with my compose yml, I trying to deploy traefik with letsencrypt without any other container. I kind off not sure if need to provider .certresolver label in yml. Some let me if its valid for letsencrypt

version: “3.3”

services:
traefik:
image: traefik:v2.0
restart: always
container_name: traefik
ports:
- “80:80”
- “8080:8080”
- “443:443”
command:
- --api.insecure=true
- --api.dashboard=true
- --api.debug=true
- --log.level=DEBUG
- --providers.docker=true
- --providers.docker.exposedbydefault=false
- --providers.file.filename=/dynamic.yaml
- --providers.docker.network=web
- --entrypoints.web.address=:80
- --entrypoints.web-secured.address=:443
- --certificatesresolvers.mytlschallenge.acme.tlschallenge=true
- --certificatesresolvers.mytlschallenge.acme.email=5@mail.com
- --certificatesresolvers.mytlschallenge.acme.storage=/letsencrypt/acme.json
volumes:
- ./letsencrypt:/letsencrypt
- /var/run/docker.sock:/var/run/docker.sock
- ./dynamic.yaml:/dynamic.yaml
networks:
- web
labels:
- “traefik.enable=true”
- “traefik.http.routers.api.rule=Host(monitor.**.dev)”
- “traefik.http.routers.api.service=api@internal”

networks:
web:
external: true

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.