The traefik wireguard setup we have now is hard to configure because the client is set to terminate TLS, so it has two domains for everything, and two sets of TLS certs.
This can be simplified by using a single domain, single certificate, TLS passthrough, and Host-SNI routing.
The traefik wireguard setup we have now is hard to configure because the client is set to terminate TLS, so it has two domains for everything, and two sets of TLS certs.
This can be simplified by using a single domain, single certificate, TLS passthrough, and Host-SNI routing.