Specify passthrough for TCP/TLS in its own section

This commit is contained in:
mpl 2020-03-10 17:28:04 +01:00 committed by GitHub
parent df351511de
commit 4408c634b0
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -796,10 +796,9 @@ Services are the target for the router.
When a TLS section is specified, When a TLS section is specified,
it instructs Traefik that the current router is dedicated to TLS requests only (and that the router should ignore non-TLS requests). it instructs Traefik that the current router is dedicated to TLS requests only (and that the router should ignore non-TLS requests).
By default, Traefik will terminate the SSL connections (meaning that it will send decrypted data to the services), By default, a router with a TLS section will terminate the TLS connections, meaning that it will send decrypted data to the services.
but Traefik can be configured in order to let the requests pass through (keeping the data encrypted), and be forwarded to the service "as is".
??? example "Configuring TLS Termination" ??? example "Router for TLS requests"
```toml tab="File (TOML)" ```toml tab="File (TOML)"
## Dynamic configuration ## Dynamic configuration
@ -822,6 +821,13 @@ but Traefik can be configured in order to let the requests pass through (keeping
tls: {} tls: {}
``` ```
#### `passthrough`
As seen above, a TLS router will terminate the TLS connection by default.
However, the `passthrough` option can be specified to set whether the requests should be forwarded "as is", keeping all data encrypted.
It defaults to `false`.
??? example "Configuring passthrough" ??? example "Configuring passthrough"
```toml tab="File (TOML)" ```toml tab="File (TOML)"