Traefik

[masterbalby2]

Hello, I use on a traefik server in a docker container to generate my Https certificates. Geoip-shell is configured to authorize FR connections only. When disabled, traefik can generate certificates. When enabled, traefik can no longer generate certificates. How do I do this? Thanks

[friendly-bits]

Hi, you need an IP list of the IP ranges used by this service. Please see #26, #33 for 2 examples of such lists. Once you have the list, process it in a way which results in a newline-separated list of IP ranges and/or addresses (in #26 I explained how to process a CSV file with such list). The resulting newline-separated IP list file can be imported into geoip-shell via a command like geoip-shell configure -A <path_to_ip_list_file>.

If you find such list, please post a link here so other people using traefik can refer to it as well.

[masterbalby2]

Thank you, I'm watching this.

[friendly-bits]

I'm not sure what you mean by "watching this" but you probably just need to use a search engine and find that list. Or ask on traefik's support forum (if they have one).

[v1rusnl]

Thank you, I'm watching this.

https://github.com/n3roGit/LetsEncryptIPs

The IPs can change anytime.

[friendly-bits]

I'm not sure how traefik is related to letsencrypt but if we are actually talking about letsencrypt then one could allow the ip's posted on the page @v1rusnl linked to as a temporary workaround, but because these ip's may change any time, this is probably not the best solution.

There are known proper solutions. Please see #35.