Caddy log from Portainer
{"level":"warn","ts":1666938547.0945609,"logger":"admin","msg":"admin endpoint disabled"}
{"level":"info","ts":1666938547.0947795,"logger":"tls.cache.maintenance","msg":"started background certificate maintenance","cache":"0xc0000daa80"}
{"level":"info","ts":1666938547.0962384,"logger":"http","msg":"server is listening only on the HTTPS port but has no TLS connection policies; adding one to enable TLS","server_name":"proxy","https_port":443}
{"level":"info","ts":1666938547.096259,"logger":"http","msg":"enabling automatic HTTP->HTTPS redirects","server_name":"proxy"}
{"level":"warn","ts":1666938547.1172225,"logger":"pki.ca.local","msg":"installing root certificate (you might be prompted for password)","path":"storage:pki/authorities/local/root.crt"}
{"level":"info","ts":1666938547.1175494,"msg":"Warning: \"certutil\" is not available, install \"certutil\" with \"apt install libnss3-tools\" or \"yum install nss-tools\" and try again"}
{"level":"info","ts":1666938547.1175647,"msg":"define JAVA_HOME environment variable to use the Java trust"}
{"level":"info","ts":1666938547.1588328,"msg":"certificate installed properly in linux trusts"}
{"level":"info","ts":1666938547.1591394,"logger":"http","msg":"enabling HTTP/3 listener","addr":":443"}
{"level":"info","ts":1666938547.1591535,"logger":"tls","msg":"cleaning storage unit","description":"FileStorage:/data/caddy"}
{"level":"info","ts":1666938547.1593375,"logger":"tls","msg":"finished cleaning storage units"}
{"level":"info","ts":1666938547.159309,"msg":"failed to sufficiently increase receive buffer size (was: 208 kiB, wanted: 2048 kiB, got: 416 kiB). See https://github.com/lucas-clemente/quic-go/wiki/UDP-Receive-Buffer-Size for details."}
{"level":"info","ts":1666938547.1594894,"logger":"http.log","msg":"server running","name":"proxy","protocols":["h1","h2","h3"]}
{"level":"info","ts":1666938547.1595333,"logger":"http.log","msg":"server running","name":"remaining_auto_https_redirects","protocols":["h1","h2","h3"]}
{"level":"info","ts":1666938547.1595397,"logger":"http","msg":"enabling automatic TLS certificate management","domains":["docker"]}
Caddy proxying https://docker -> firezone:13000
{"level":"info","ts":1666938547.1597757,"logger":"tls.obtain","msg":"acquiring lock","identifier":"docker"}
{"level":"info","ts":1666938547.2773921,"logger":"tls.obtain","msg":"lock acquired","identifier":"docker"}
{"level":"info","ts":1666938547.2775457,"logger":"tls.obtain","msg":"obtaining certificate","identifier":"docker"}
{"level":"info","ts":1666938547.2792954,"logger":"tls.obtain","msg":"certificate obtained successfully","identifier":"docker"}
{"level":"info","ts":1666938547.2793667,"logger":"tls.obtain","msg":"releasing lock","identifier":"docker"}
{"level":"warn","ts":1666938547.279683,"logger":"tls","msg":"stapling OCSP","error":"no OCSP stapling for [docker]: no OCSP server specified in certificate","identifiers":["docker"]}
{"level":"info","ts":1666967817.0768027,"msg":"shutting down apps, then terminating","signal":"SIGTERM"}
{"level":"warn","ts":1666967817.0768447,"msg":"exiting; byeee!! đź‘‹","signal":"SIGTERM"}
{"level":"info","ts":1666967817.0772245,"logger":"tls.cache.maintenance","msg":"stopped background certificate maintenance","cache":"0xc0000daa80"}
{"level":"info","ts":1666967817.0772867,"msg":"shutdown complete","signal":"SIGTERM","exit_code":0}
{"level":"warn","ts":1666967818.921369,"logger":"admin","msg":"admin endpoint disabled"}
{"level":"info","ts":1666967818.9221005,"logger":"http","msg":"server is listening only on the HTTPS port but has no TLS connection policies; adding one to enable TLS","server_name":"proxy","https_port":443}
{"level":"info","ts":1666967818.9221208,"logger":"http","msg":"enabling automatic HTTP->HTTPS redirects","server_name":"proxy"}
{"level":"info","ts":1666967818.9224792,"logger":"http","msg":"enabling HTTP/3 listener","addr":":443"}
{"level":"info","ts":1666967818.922541,"msg":"failed to sufficiently increase receive buffer size (was: 208 kiB, wanted: 2048 kiB, got: 416 kiB). See https://github.com/lucas-clemente/quic-go/wiki/UDP-Receive-Buffer-Size for details."}
{"level":"info","ts":1666967818.9226906,"logger":"http.log","msg":"server running","name":"proxy","protocols":["h1","h2","h3"]}
{"level":"info","ts":1666967818.9227312,"logger":"http.log","msg":"server running","name":"remaining_auto_https_redirects","protocols":["h1","h2","h3"]}
{"level":"info","ts":1666967818.9228055,"logger":"http","msg":"enabling automatic TLS certificate management","domains":["docker"]}
{"level":"warn","ts":1666967818.9231205,"logger":"tls","msg":"stapling OCSP","error":"no OCSP stapling for [docker]: no OCSP server specified in certificate","identifiers":["docker"]}
{"level":"info","ts":1666967818.9285345,"logger":"tls.cache.maintenance","msg":"started background certificate maintenance","cache":"0xc000530ee0"}
{"level":"info","ts":1666967818.9292817,"logger":"tls.renew","msg":"acquiring lock","identifier":"docker"}
{"level":"info","ts":1666967818.9367218,"logger":"tls","msg":"cleaning storage unit","description":"FileStorage:/data/caddy"}
{"level":"info","ts":1666967818.937033,"logger":"tls","msg":"finished cleaning storage units"}
{"level":"info","ts":1666967818.9454775,"logger":"pki.ca.local","msg":"root certificate is already trusted by system","path":"storage:pki/authorities/local/root.crt"}
Caddy proxying https://docker -> firezone:13000
{"level":"info","ts":1666967818.9893606,"logger":"tls.renew","msg":"lock acquired","identifier":"docker"}
{"level":"info","ts":1666967818.9898055,"logger":"tls.renew","msg":"renewing certificate","identifier":"docker","remaining":13929.010197252}
{"level":"info","ts":1666967818.9911869,"logger":"tls.renew","msg":"certificate renewed successfully","identifier":"docker"}
{"level":"info","ts":1666967818.9912145,"logger":"tls.renew","msg":"releasing lock","identifier":"docker"}
{"level":"info","ts":1666967818.9912636,"logger":"tls","msg":"reloading managed certificate","identifiers":["docker"]}
{"level":"warn","ts":1666967818.9915774,"logger":"tls","msg":"stapling OCSP","error":"no OCSP stapling for [docker]: no OCSP server specified in certificate","identifiers":["docker"]}
{"level":"info","ts":1666967818.9915946,"logger":"tls.cache","msg":"replaced certificate in cache","subjects":["docker"],"new_expiration":1667011019}