Hi, i only recently started with k8s as well as k3s, i apologize for the stupid questions in advance.
i am trying to use my own TLS certificate (+ intermediate) with a newly brought up k3s cluster (with builtin traefik ingres). i tried the most obvious way: created a tls secret and referenced that from within a normal ingress object but traefik still serves its self generated cert instead of mine.
can someone help me with that?
07/13/2022, 7:47 PM
You might try the Traefik slack or forums. We package Traefik but I don’t think you’re going to find any Traefik experts here.
07/13/2022, 7:48 PM
yes, i’ll probably do that as well - though i fear being sent around “because your using k3s own helm charts - who knows what they set up”
07/13/2022, 7:49 PM
our charts are their charts. We just split the CRDs out to make upgrades smoother. They’re pretty familiar with k3s users since we’re one of the few distros that packages Traefik instead of ingress-nginx.
07/13/2022, 7:51 PM
07/16/2022, 5:37 PM
I had a similar problem. For me the issue was that Traefik by default doesn't allow using resources across namespaces.
I ended up creating a single wildcard cert and putting in kube-system where Traefik is, then setting it as the default TLS cert