A dynamic reverse proxy for containers. SSL is automatically configured using Let's Encrypt.
Access to the /jenkins admin site is IP restricted.
Special Note: Due to this commit not yet in a release, Traefik had to be built from source code.
First install the GO dev environment following the instructions here.
Next, temporarily disable SELinux on CentOS 7 (otherwise docker volumes may get permission errors)
sudo setenforce 0
Clone the Traefik source code to /tmp
cd /tmp
Next create the latest docker image for Traefik using make:
cd /tmp/traefik
make image
Make sure you are inside this repo
cd /home/yourname/src/traefik
First, create a empty acme.json file to hold acquired SSL certificates:
touch acme.json
chmod 600 acme.json
Second, setup a .htpasswd file using the instructions below
SKIP THIS if you are not using the web dashboard.
On Centos 7, install htpassword:
sudo yum install httpd-tools
Then generate a password file for user 'admin':
sudo htpasswd -c .htpasswd admin
I keep a password hint in a separate 'hint' file.
./run.sh
A simple Angular JS web dashboard for traefik can be viewed here.
Warning: SSL is not enabled for the dashboard and admin password will go in the clear. The deprecated dashboard is for demo purposes, replace with Prometheus/Grafana in prod.
Note: The web dashboard is disabled if metrics are enabled.
Traefik container must run with --privileged to access docker unix socket.