Traefik v2.0 in Docker
How to use these slides?
Browse the slides: Use the arrows
Change chapter: Left/Right arrows
Next or previous slide: Top and bottom arrows
Overview of the slides: keyboard’s shortcut "o"
Speaker mode (and notes): keyboard’s shortcut "s"
Whoami
Emile vauge
🇫🇷 Developer
Creator of Træfik, Founder of Containous
Containous
We Believe in Open Source
We Deliver Traefik and Traefik Enterprise Edition
Commercial Support
30 people distributed, 90% tech
Why Traefik?
Why, Mr Anderson?
Evolution of Software Design
The Premise of Microservices…
…and What Happens
Where’s My Service?
Tools of the Trade
What If I Told You?
That You Don’t Have to Write This Configuration File…?
Here Comes Traefik!
Traefik Project
MIT License
Written in Go
24,000+ ⭐ 1B+ ⬇️ 400+ 👷
Created in 2015, 4Y 🎂
Current stable branch:
v2.0
Traefik 2.0 Quick Overview
Revamped Documentation
Clarified Concepts
Expressive Routing Rule Syntax
Middlewares
TCP Support
Canary / Mirroring
And so Much More…
Traefik (v2.0) Core Concepts
Traefik is an Edge Router
Traefik Dynamically Discovers Services
Architecture (v2.0) at a Glance
Entrypoints
Routers
Middlewares
Services
Architecture (again) at a Glance
Static & Dynamic Configuration
Show Me the Configuration!
Simple Example with 🐳
With 🐳
With Docker Compose:
version: '3'
services:
reverse-proxy:
image: traefik:v2.0
command: --providers.docker
ports:
- "80:80"
volumes:
- /var/run/docker.sock:/var/run/docker.sock
webapp:
image: containous/whoami
labels:
- "traefik.http.routers.webapp.rule=Host(`localhost`)"With 🐳: Context
# https://mycompany.org/jenkins -> http://jenkins:8080/jenkins
jenkins:
image: jenkins/jenkins:lts
environment:
- JENKINS_OPTS=--prefix=/jenkins
labels:
- "traefik.http.services.jenkins.LoadBalancer.server.Port=8080" # Because 50000 is also exposed
- "traefik.http.routers.jenkins.rule=Host(`mycompany.org`) && PathPrefix(`/jenkins`)"
- "traefik.http.routers.jenkins.service=jenkins"With 🐳: Rewrites
# https://mycompany.org/gitserver -> http://gitserver:3000/
gitserver:
image: gitea/gitea
labels:
- "traefik.http.routers.gitserver.rule=Host(`mycompany.org`) && PathPrefix(`/gitserver`)"
- "traefik.http.middlewares.gitserver-stripprefix.stripprefix.prefixes=/gitserver"
- "traefik.http.routers.gitserver.middlewares=gitserver-stripprefix"With 🐳: Websockets
# https://webterminal.mycompany.org -> http://webterminal/
webterminal:
image: tsl0922/ttyd
labels:
- "traefik.http.routers.devbox.rule=Host(`webterminal.mycompany.org`)"With File Configuration
Canaray releases
http:
services:
canary:
weighted:
services:
- name: appv1
weight: 3 # 75%
- name: appv2
weight: 1 #25%
appv1:
loadBalancer:
servers:
- url: "http://private-ip-server-1/"
appv2:
loadBalancer:
servers:
- url: "http://private-ip-server-2/"Demo
Demo 1 - SNI Routing + TLS Passthrough for TCP
Demo 1 - Configuration
Demo 2 - Muxing HTTPS and TCP on the Same Port
Demo 3 - Canaray Release of a WebApp
The Herd
Traefik comes in Herd
As Simple As Traefik
Install it:
# Cluster Installation
traefikeectl install \
--licensekey="SuperSecretLicence" \
--dashboard \
--kubernetes # Or --swarmConfigure it:
# Routing Configuration, same as Traefik's
traefikeectl deploy \
--acme.email=ssl-admin@mycompany.org
--acme.tlsChallenge
...Free Trial
East / West Traefik
Say Hello to Maesh
What is Maesh?
Maesh is a lightweight, easy to configure, and non-invasive service mesh that allows visibility and management of the traffic flows inside any Kubernetes cluster.
Maesh Architecture
More on Maesh
Built on top of Traefik,
SMI (Service Mesh Interface specification) compliant,
Opt-in by default.
That’s All Folks!
We have
stickers!
We are hiring!
docker run -it containous/jobsThank you!
