61 lines
2.2 KiB
YAML
61 lines
2.2 KiB
YAML
services:
|
|
traefik:
|
|
container_name: traefik
|
|
image: traefik:v2.9
|
|
command:
|
|
- "--api.insecure=true"
|
|
- "--providers.docker=true"
|
|
- "--providers.docker.exposedbydefault=false"
|
|
- "--providers.docker.network=external"
|
|
- "--entrypoints.internal.address=:80"
|
|
- "--entrypoints.internalsecure.address=:443"
|
|
- "--entrypoints.internal.http.redirections.entryPoint.to=internalsecure"
|
|
- "--entrypoints.internal.http.redirections.entryPoint.scheme=https"
|
|
- "--entrypoints.internal.http.redirections.entryPoint.permanent=true"
|
|
- "--certificatesresolvers.http.acme.httpchallenge=true"
|
|
- "--certificatesresolvers.http.acme.httpchallenge.entrypoint=external"
|
|
- "--certificatesresolvers.http.acme.email=acme@bhasher.com"
|
|
- "--certificatesresolvers.http.acme.storage=acme.json"
|
|
- "--entrypoints.external.address=:81"
|
|
- "--entrypoints.externalsecure.address=:444"
|
|
- "--entrypoints.external.http.redirections.entryPoint.to=externalsecure"
|
|
- "--entrypoints.external.http.redirections.entryPoint.scheme=https"
|
|
- "--entrypoints.external.http.redirections.entryPoint.permanent=true"
|
|
#- "--log.level=DEBUG"
|
|
- "--metrics.prometheus=true"
|
|
- "--api.dashboard=true"
|
|
#- "--experimental.plugins.sablier.moduleName=github.com/acouvreur/sablier"
|
|
#- "--experimental.plugins.sablier.version=v1.3.0"
|
|
#- "--providers.file.filename=/etc/traefik/dynamic-config.yml"
|
|
environment:
|
|
- TZ=Europe/Paris
|
|
ports:
|
|
- "80:80"
|
|
- "443:443"
|
|
- "81:81"
|
|
- "444:444"
|
|
#- "8080:8080"
|
|
volumes:
|
|
- /var/run/docker.sock:/var/run/docker.sock:ro
|
|
- type: bind
|
|
source: $DATA/traefik/acme.json
|
|
target: /acme.json
|
|
- type: bind
|
|
source: $DATA/traefik/rules.toml
|
|
target: /rules.toml
|
|
restart: always
|
|
labels:
|
|
- "traefik.enable=true"
|
|
- "traefik.http.routers.traefik.rule=Host(`traefik.bhasher.com`)"
|
|
- "traefik.http.services.traefik.loadbalancer.server.port=8080"
|
|
- "traefik.http.routers.traefik.tls=true"
|
|
- "traefik.http.routers.traefik.tls.certresolver=http"
|
|
- "traefik.http.routers.traefik.entrypoints=internalsecure"
|
|
- "traefik.http.routers.traefik.middlewares=authelia@docker"
|
|
networks:
|
|
- external
|
|
|
|
networks:
|
|
external:
|
|
name: external
|