Traefik using port 80 and 443 under FreeBSD

A

Airost

Good morning everyone,

I've been trying to get traefik to work in FreeBSD for my reverse proxy. Basically my goal is to expose some services running inside virtual machines to the outside using only ports 80 and 443. Traefik supports both http and tcp reverse proxy. I've managed to start the service and dashboard is displayed with my config however in dynamic config I have to change port 80 to anything like 8080 and 443 to 8443 to let the service start up otherwise I get a message:
Code: 
service traefik start
traefik not running? (check /var/run/traefik.pid).
Starting traefik.
There is nothing in the log, I've looked for some help on traefik forum and I've got reply:
Ports below 1024 usually require special privileges. As BSD is very much about security, you might need to set that first.
Click to expand...
I've checked if there is another service using port 80 and 443 with netstat and sockstat but there isn't anything. Service traefik is using traefik user to run. Do I need to give some privileges to traefik to listen on port 80 and 443? If yes then how can I do it? Is there anybody competent with traefik here and managed to get it to work? Most tutorials using docker to run traefik but I had no luck to run traefik in docker container under FreeBSD. I've tried all possible options in dynamic config of traefik such as:
Code: 
[entryPoints]
  [entryPoints.web]
    address = ":80"

  [entryPoints.websecure]
    address = ":443"

or


Code: 
[entryPoints]
  [entryPoints.web]
    address = "192.168.0.1:80"

  [entryPoints.websecure]
    address = "192.168.0.1:443"
Service only starts with

Code: 
[entryPoints]
  [entryPoints.web]
    address = "8080"

  [entryPoints.websecure]
    address = ":8443"
sockstat output:
Code: 
sockstat -4 -l -p 443
USER     COMMAND    PID   FD PROTO  LOCAL ADDRESS         FOREIGN ADDRESS
Code: 
sockstat -4 -l -p 80
USER     COMMAND    PID   FD PROTO  LOCAL ADDRESS         FOREIGN ADDRESS

Any advise please?

Thanks in advance,
Seb
 
Yeah, I just edited /usr/local/etc/rc.d/traefik under user line and group I changed from traefik/traefik to root/wheel and it worked, however I would like to run it as traefik user with permission to listen on port 80 and 443
 
You must log in or register to reply here.
Back
Top