Moin und Hallo an alle,
schon seit paar Tagen versuche ich bei "The Matrix Federation Tester" https://federationtester.matrix.org/ alles auf Success zu kriegen.
Dieser Fehler wird immer Angezeigt
Code
Connection Errors
Get "https://[homeip]:443/_matrix/key/v2/server": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
IPV6 wurde aktiviert:
/etc/docker/daemon.json<br>
DNS Anpassung
Code
_matrix._tcp SRV 10 5 443 synapse.matrix.domain.de
matrix CNAME domain.ddnss.de
synapse CNAME domain.ddnss.de
element CNAME domain.ddnss.de
traefik CNAME domain.ddnss.de
Hier meine Config von meinen Container:
Traefik:
Code
version: '3'
services:
traefik:
image: traefik:latest
container_name: traefik
restart: unless-stopped
security_opt:
- no-new-privileges:true
networks:
- proxy
ports:
- 80:80
- 443:443
volumes:
- /etc/timezone:/etc/timezone:ro
- /etc/localtime:/etc/localtime:ro
- /var/run/docker.sock:/var/run/docker.sock:ro
- ./data/config/traefik.yml:/traefik.yml:ro
- ./data/config/dynamic_conf.yml:/dynamic_conf.yml
- ./data/acme/acme.json:/acme.json
- ./data/logs/traefik.log:/logs/traefik.log
- ./data/logs/access.log:/logs/access.log
environment:
# Wildcard-Cert for Domain without DNS-API
# - nodnsapi.com - DNS hosted by Server without DNS-API
# - netcuphosted.com - DNS hosted by Netcup-Nameserver with DNS-API
# Manual set the folowing DNS-CNAME Entry
# _acme-challenge.nodnsapi.com CNAME acme.validation.netcuphosted.com
- NETCUP_CUSTOMER_NUMBER=${NETCUP_CUSTOMER_NUMBER}
- NETCUP_API_KEY=${NETCUP_API_KEY}
- NETCUP_API_PASSWORD=${NETCUP_API_PASSWORD}
- LEGO_EXPERIMENTAL_CNAME_SUPPORT=true
labels:
- "traefik.enable=true"
# – ------------------------------------------------------
# INCLUDE: dynamic_conf.yml
# - redirect@file
# - secHeaders@file
- "providers.file.filename=/dynamic_conf.yml"
# – ------------------------------------------------------
# Middleware: traefik-auth
# - generate Hash with: echo $(htpasswd -nb USER PASSWORD) | sed -e s/\\$/\\$\\$/g
- "traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_HTPASSWD}"
# – ------------------------------------------------------
# Router "traefik": http://traefik.nodnsapi.com -> Redirect
- "traefik.http.routers.traefik.entrypoints=http"
- "traefik.http.routers.traefik.rule=Host(`traefik.${DOMAIN)`)"
- "traefik.http.routers.traefik.middlewares=redirect@file"
# – ------------------------------------------------------
# Router "traefik-secure": https://traefik.nodnsapi.com -> Traefik Dashboard
- "traefik.http.routers.traefik-secure.entrypoints=https"
- "traefik.http.routers.traefik-secure.rule=Host(`traefik.${DOMAIN)`)"
- "traefik.http.routers.traefik-secure.middlewares=traefik-auth,secHeaders@file"
- "traefik.http.routers.traefik-secure.tls=true"
- "traefik.http.routers.traefik-secure.service=api@internal"
# – ------------------------------------------------------
# Router "whoami-secure": To get Wildcard-Certs, no Service
- "traefik.http.routers.whoami-secure.service=noop@internal"
- "traefik.http.routers.whoami-secure.tls.certResolver=dns"
- "traefik.http.routers.whoami-secure.tls.domains[0].main=*.${DOMAIN)"
# - "traefik.http.routers.whoami-secure.tls.domains[0].sans=${DOMAIN)"
# – ------------------------------------------------------
networks:
proxy:
external: true
Alles anzeigen
Code
global:
checkNewVersion: true
sendAnonymousUsage: false
log:
filePath: "./logs/traefik.log"
# DEBUG, PANIC, FATAL, ERROR, WARN, and INFO.
level: DEBUG
accessLog:
filePath: "./logs/access.log"
bufferingSize: 100
api:
dashboard: true
entryPoints:
http:
address: ":80"
https:
address: ":443"
providers:
docker:
endpoint: "unix:///var/run/docker.sock"
exposedByDefault: false
network: proxy
file:
filename: "/dynamic_conf.yml"
certificatesResolvers:
dns:
acme:
email: info@matulewski.de
storage: acme.json
keyType: RSA4096
# Production
caServer: https://acme-v02.api.letsencrypt.org/directory
# Staging
# caServer: https://acme-staging-v02.api.letsencrypt.org/directory
dnschallenge:
provider: netcup
delaybeforecheck: 300
resolvers:
- root-dns.netcup.net:53
- second-dns.netcup.net:53
- 8.8.8.8:53
- 1.1.1.1:53
Alles anzeigen
Code
tls:
options:
default:
minVersion: VersionTLS12
cipherSuites:
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305
- TLS_AES_256_GCM_SHA384
- TLS_CHACHA20_POLY1305_SHA256
curvePreferences:
- CurveP521
- CurveP384
sniStrict: true
http:
middlewares:
# secHeaders@file
# - Set Sameorigin
# - Set HSTS
# - enforce HTTPS
secHeaders:
headers:
browserXssFilter: true
contentTypeNosniff: true
customFrameOptionsValue: "SAMEORIGIN"
sslRedirect: true
#HSTS Configuration
stsIncludeSubdomains: true
stsPreload: true
stsSeconds: 15552000
# redirect@file: Redirect HTTP -> HTTPS
redirect:
redirectScheme:
scheme: "https"
Alles anzeigen
Falls Ihr weitere Informationen benötigt, sagt bescheid.
Für eure Unterstützung würde ich mich sehr freuen.