ฝัง
- เผยแพร่เมื่อ 8 เม.ย. 2024
- To try everything Brilliant has to offer-free-for a full 30 days, visit brilliant.org/Techdox . You’ll also get 20% off an annual premium subscription
Join this channel to get access to perks:
/ @techdox
Join us on a comprehensive journey as we demystify the process of deploying Traefik, the cloud-native edge router that simplifies networking and makes service discovery a breeze. Whether you're looking to route traffic to your web applications, enable automatic SSL with Let's Encrypt, or just want to understand how Traefik fits into your tech stack, this video is for you.
This video was sponsored by Brilliant
Links:
Techdox Docs - docs.techdox.nz/traefik/
Offical Docs - doc.traefik.io/traefik/
Discord Channel - / discord - วิทยาศาสตร์และเทคโนโลยี
To try everything Brilliant has to offer-free-for a full 30 days, visit brilliant.org/Techdox . You’ll also get 20% off an annual premium subscription
Thank you for the video!! I am a fan of Traefik!! I love it!! Cheers!!
Great video and explanation. Straight to the point. Thanks
Thank you, this is so much more helpful than Mistral and ChatGPT were. I had almost given up
Great video Techdox. I followed through with your steps which was great with the label explanation, but I'm still a bit confused. My scenario is have Traefik reverse-proxy Plex with TLS so can I authenticate on the pass-through to the server, not even sure this if is possible or if I'm just making it to convoluted, any advice would be greatly appreciated.
Yeah can be done, but I’m still learning all the features of Traefik as well, so feel free to jump into the discord and we can try sort it together
would it not be easier to use nginx proxy manager ????
what if you gave a docker compose file that have multiple web-ports, like 8080, 9000, 80, 443, 8000, 6040 ???
what about dockers that create their own multiple docker-networks ????
Can Traefik be used with non-docker setups? IE: standalone setup
Just has a quick read and you can, there’s a few examples online but nothing straight forward it seems. I might add it to my documentation if I get some time
Yes you can create static config files pointing to your services.
I run in an isolated network where I still want certs. I manage my certs with a PFSENSE. I will not use let’s encrypt. It would be great to see a demonstration on how to do that. Does traefik make money from lets encrypt somehow?
They don’t make money. It’s more Let’s encrypt is like the go to service for home labs etc
Genuinely curious. Why use traefik instead of cloudflare tunnel. Also how safe is opening them ports. Is that opening of ports giving more surface area for attacks
Few reasons, Cloudflare tunnels HTTPS ends on the Cloudflare side, so they can see your traffic.
Traefik on the otherhand is managed by you and uses Lets Encrypt SSL for all HTTPS traffic and you have total control of this.
Using Traefik and opening the ports to your specific device is opening your network up to the web but following security best practices, keeping routers and servers up to date you will be find.
@@Techdox I really appreciate your reply. I had both cloudflare and traefik setup, but took fear on opening ports up. So I just needed a better answer in my head as to my concerns. Thank you
@@neoflix59 it’s great to question these things, don’t just do things because someone on the interest said so haha. Good stuff
Why are you using this with nginx over just using nginx or caddy. What I mean is you are using a reverse proxy to a reverse proxy, or was it done as just a simple example.
Was just using an Nginx web server as an example, since it’s lightweight and simple to setup test websites to showcase
It’s basically a router ?
It's a reverse proxy, so it's more managing the traffic and flow for your microservices such as Docker and Kubernetes.
Here's a bit of a breakdown
A traditional router acts like a postal worker, directing letters (data packets) to their destination addresses across the internet. It's a key piece of your home or office network that helps connect your devices to the internet and each other, making decisions on where data should go on a larger, network-to-network level.
A reverse proxy, like Traefik, is more like a receptionist at a big office. When someone comes in asking for a specific department or person, the receptionist directs them where to go within the building. The visitors don't need to know the office layout or where everyone sits; they just need to know they can get to the right place by asking the receptionist. In the digital world, Traefik receives requests from the internet and then decides which server within your network should handle them, often based on the content of the request or the requested URL. It's especially useful for managing traffic to multiple servers, ensuring requests are efficiently and securely handled.
So, while both routers and reverse proxies deal with directing traffic, routers operate on a broader, network-wide scale, and reverse proxies specialize in managing web traffic to and from specific servers within a network.
@@Techdox as a reverse proxy does this offer anything more substantial then NGINX PM does? NPM is very easy to use and setup.
@@nicholasmincone1222 Traefik, as a reverse proxy, offers several features that distinguish it from NGINX Proxy Manager, particularly in environments with dynamic service discovery and automatic configuration. It's great in handling microservices architectures, with seamless integration into systems like Kubernetes and Docker, enabling it to automatically detect and route traffic to new services without manual configuration.
Additionally, Traefik provides built-in Let's Encrypt support for automatic SSL certificate management and a user-friendly dashboard for real-time monitoring and configuration. These features make it especially suitable for more complex, scalable environments compared to NPM, which is more static but user-friendly for simpler setups.