Hi mate! Thanks for this, brilliant video! I needed the traefik refresh in your simplified manner, watching all the other "simple" videos just got me climbing "Mount MEH" and dropping the subject altogether. Now I have a reasonable hope of actually getting it up and running! 😀
The Traefik UI is mainly to get a visual view of what you have configured. The UI should never be exposed externally and if you want it to be look up my Cloudflare tunnel videos
Just has a quick read and you can, there’s a few examples online but nothing straight forward it seems. I might add it to my documentation if I get some time
I was looking for a good video of which I can share to my team. And among many thing seems promising. Also, It would have been nice, if you use a single docker-compose file and a bit more elaboration on wildcard certificates. Adding those might make this a very good video for an introduction of Traefik to fullstack developers.
Genuinely curious. Why use traefik instead of cloudflare tunnel. Also how safe is opening them ports. Is that opening of ports giving more surface area for attacks
Few reasons, Cloudflare tunnels HTTPS ends on the Cloudflare side, so they can see your traffic. Traefik on the otherhand is managed by you and uses Lets Encrypt SSL for all HTTPS traffic and you have total control of this. Using Traefik and opening the ports to your specific device is opening your network up to the web but following security best practices, keeping routers and servers up to date you will be find.
@@Techdox I really appreciate your reply. I had both cloudflare and traefik setup, but took fear on opening ports up. So I just needed a better answer in my head as to my concerns. Thank you
Great video Techdox. I followed through with your steps which was great with the label explanation, but I'm still a bit confused. My scenario is have Traefik reverse-proxy Plex with TLS so can I authenticate on the pass-through to the server, not even sure this if is possible or if I'm just making it to convoluted, any advice would be greatly appreciated.
I run in an isolated network where I still want certs. I manage my certs with a PFSENSE. I will not use let’s encrypt. It would be great to see a demonstration on how to do that. Does traefik make money from lets encrypt somehow?
Why are you using this with nginx over just using nginx or caddy. What I mean is you are using a reverse proxy to a reverse proxy, or was it done as just a simple example.
It's a reverse proxy, so it's more managing the traffic and flow for your microservices such as Docker and Kubernetes. Here's a bit of a breakdown A traditional router acts like a postal worker, directing letters (data packets) to their destination addresses across the internet. It's a key piece of your home or office network that helps connect your devices to the internet and each other, making decisions on where data should go on a larger, network-to-network level. A reverse proxy, like Traefik, is more like a receptionist at a big office. When someone comes in asking for a specific department or person, the receptionist directs them where to go within the building. The visitors don't need to know the office layout or where everyone sits; they just need to know they can get to the right place by asking the receptionist. In the digital world, Traefik receives requests from the internet and then decides which server within your network should handle them, often based on the content of the request or the requested URL. It's especially useful for managing traffic to multiple servers, ensuring requests are efficiently and securely handled. So, while both routers and reverse proxies deal with directing traffic, routers operate on a broader, network-wide scale, and reverse proxies specialize in managing web traffic to and from specific servers within a network.
@@Sapious1 Traefik, as a reverse proxy, offers several features that distinguish it from NGINX Proxy Manager, particularly in environments with dynamic service discovery and automatic configuration. It's great in handling microservices architectures, with seamless integration into systems like Kubernetes and Docker, enabling it to automatically detect and route traffic to new services without manual configuration. Additionally, Traefik provides built-in Let's Encrypt support for automatic SSL certificate management and a user-friendly dashboard for real-time monitoring and configuration. These features make it especially suitable for more complex, scalable environments compared to NPM, which is more static but user-friendly for simpler setups.
To try everything Brilliant has to offer-free-for a full 30 days, visit brilliant.org/Techdox . You’ll also get 20% off an annual premium subscription
Thank you for the video!! I am a fan of Traefik!! I love it!! Cheers!!
Hi mate! Thanks for this, brilliant video! I needed the traefik refresh in your simplified manner, watching all the other "simple" videos just got me climbing "Mount MEH" and dropping the subject altogether. Now I have a reasonable hope of actually getting it up and running! 😀
Nice tutorial, BUT, you skipped showing how to access the Traefik ui safely ?
Ii can't wait for you to do this video
The Traefik UI is mainly to get a visual view of what you have configured. The UI should never be exposed externally and if you want it to be look up my Cloudflare tunnel videos
Thank you, this is so much more helpful than Mistral and ChatGPT were. I had almost given up
Can Traefik be used with non-docker setups? IE: standalone setup
Just has a quick read and you can, there’s a few examples online but nothing straight forward it seems. I might add it to my documentation if I get some time
Yes you can create static config files pointing to your services.
You can create a dynamic config and in the service section attach the ip port configuration
Brilliant, thank you ! Do you think doing another tuto including authentik ?
Like Traefik and authentik? I do already have an authentik video
How does traffic fare with path based routing?
what if you gave a docker compose file that have multiple web-ports, like 8080, 9000, 80, 443, 8000, 6040 ???
I was looking for a good video of which I can share to my team. And among many thing seems promising. Also, It would have been nice, if you use a single docker-compose file and a bit more elaboration on wildcard certificates. Adding those might make this a very good video for an introduction of Traefik to fullstack developers.
Why use ngnix if you have traefik?
In this video nginx just provides a test web page behind traefik.
Genuinely curious. Why use traefik instead of cloudflare tunnel. Also how safe is opening them ports. Is that opening of ports giving more surface area for attacks
Few reasons, Cloudflare tunnels HTTPS ends on the Cloudflare side, so they can see your traffic.
Traefik on the otherhand is managed by you and uses Lets Encrypt SSL for all HTTPS traffic and you have total control of this.
Using Traefik and opening the ports to your specific device is opening your network up to the web but following security best practices, keeping routers and servers up to date you will be find.
@@Techdox I really appreciate your reply. I had both cloudflare and traefik setup, but took fear on opening ports up. So I just needed a better answer in my head as to my concerns. Thank you
@@neoflix59 it’s great to question these things, don’t just do things because someone on the interest said so haha. Good stuff
Spending my free time watching this channel these days! 😁
Is it fair to say that Traefik is on the same continuum as nginx proxy manager?
@@bassam.2023 yeah that’s right, both are reverse proxies :) I honestly like NPM for the ease of config
Should you use an email from your domain (elitron in your example) instead of gmail?
Great video Techdox. I followed through with your steps which was great with the label explanation, but I'm still a bit confused. My scenario is have Traefik reverse-proxy Plex with TLS so can I authenticate on the pass-through to the server, not even sure this if is possible or if I'm just making it to convoluted, any advice would be greatly appreciated.
Yeah can be done, but I’m still learning all the features of Traefik as well, so feel free to jump into the discord and we can try sort it together
would it not be easier to use nginx proxy manager ????
Thanks for the video! Good explanation!
what about having 2 installations of traefik on the same server?
@@cholasimmons for what purpose?
Great video and explanation. Straight to the point. Thanks
what about dockers that create their own multiple docker-networks ????
I run in an isolated network where I still want certs. I manage my certs with a PFSENSE. I will not use let’s encrypt. It would be great to see a demonstration on how to do that. Does traefik make money from lets encrypt somehow?
They don’t make money. It’s more Let’s encrypt is like the go to service for home labs etc
Hi, could you kindly share repo?, I wanted to understand the folder structure.
Their repo? Sure - github.com/traefik/traefik
is it possible to do this without cloudlfare, 100% local ?
It is, yeah
Why are you using this with nginx over just using nginx or caddy. What I mean is you are using a reverse proxy to a reverse proxy, or was it done as just a simple example.
Was just using an Nginx web server as an example, since it’s lightweight and simple to setup test websites to showcase
It’s basically a router ?
It's a reverse proxy, so it's more managing the traffic and flow for your microservices such as Docker and Kubernetes.
Here's a bit of a breakdown
A traditional router acts like a postal worker, directing letters (data packets) to their destination addresses across the internet. It's a key piece of your home or office network that helps connect your devices to the internet and each other, making decisions on where data should go on a larger, network-to-network level.
A reverse proxy, like Traefik, is more like a receptionist at a big office. When someone comes in asking for a specific department or person, the receptionist directs them where to go within the building. The visitors don't need to know the office layout or where everyone sits; they just need to know they can get to the right place by asking the receptionist. In the digital world, Traefik receives requests from the internet and then decides which server within your network should handle them, often based on the content of the request or the requested URL. It's especially useful for managing traffic to multiple servers, ensuring requests are efficiently and securely handled.
So, while both routers and reverse proxies deal with directing traffic, routers operate on a broader, network-wide scale, and reverse proxies specialize in managing web traffic to and from specific servers within a network.
@@Techdox as a reverse proxy does this offer anything more substantial then NGINX PM does? NPM is very easy to use and setup.
@@Sapious1 Traefik, as a reverse proxy, offers several features that distinguish it from NGINX Proxy Manager, particularly in environments with dynamic service discovery and automatic configuration. It's great in handling microservices architectures, with seamless integration into systems like Kubernetes and Docker, enabling it to automatically detect and route traffic to new services without manual configuration.
Additionally, Traefik provides built-in Let's Encrypt support for automatic SSL certificate management and a user-friendly dashboard for real-time monitoring and configuration. These features make it especially suitable for more complex, scalable environments compared to NPM, which is more static but user-friendly for simpler setups.