Synology DSM 5.2 - Gitlab with Docker SSL Connection Error

Question

I installed Synology DSM 5.2 yesterday, because it's stable release came out.

Afterwards I installed and configured Docker, MariaDB and the gitlab from the official Synology repo.

Gitlab is running on ort :30000 and the ssh access for gitlab is running on port :30001

The Docker container is running, but whenever I try to access the Docker Website:

https://example.org:30000

=> I get SSL errors in FireFox

An error occurred during a connection to example.org:30000. SSL received a record that exceeded the maximum permissible length. (Error code: ssl_error_rx_record_too_long)

=> and Chrome:

SSL connection error

ERR_SSL_PROTOCOL_ERROR

Which can indicate an unencrypted connection (http-only) over this port and the DSM enforces HTTPS protocol somehow.

I use an officially signed and verified certificate, which works flawless in the normal DSM Webinterface, Webdav and webservices like DokuWiki.

Has someone experienced a similar problem or even found a solution. Google seems empty on the topic of Synology DSM 5.2 Docker/Gitlab SSL errors.

Answer 1

My IT infrastructure enforced SSL via HSTS for the Subdomain, the Synology was running on. HTTP access worked for the gitlab Docker image, after HSTS was disabled.

HSTS on the Synology itself was also disabled.

Enabling SSL for the GitLab Docker container (from Synology) is not possible. Gitlab is distributed as installable package for DSM 5.2 and is HTTP only without SSL encryption. You cannot even enable it, because the docker container settings are not editable. If you set up your own Docker Container, you can enable SSL, supply your Certificate and you are fine.

After I configured my own Docker container with new MariaDB credentials, mail settings and SSL certificate, it worked even with enabled HSTS.