oxmox-dot-dev/docker-compose.yml

version: "3.3"

services:

  traefik:
    image: "traefik:v2.10"
    container_name: "traefik"
    command:
      - "--log.level=DEBUG"
      - "--api.insecure=false"
      - "--providers.docker=true"
      - "--providers.docker.exposedbydefault=false"
      #- "--entrypoints.web.address=:80"
      - "--entrypoints.websecure.address=:443"
      - "--certificatesresolvers.myresolver.acme.tlschallenge=true"
      #- "--certificatesresolvers.myresolver.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory"
      - "--certificatesresolvers.myresolver.acme.email=badctoxymoron@gmx.de"
      - "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
    ports:
      #- "80:80"
      - "443:443"
      - "8080:8080"
    volumes:
      - "./letsencrypt:/letsencrypt"
      - "/var/run/docker.sock:/var/run/docker.sock:ro"

  whoami:
    image: "traefik/whoami"
    container_name: "simple-service"
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.whoami.rule=Host(`oxmox.root.sx`)"
      #- "traefik.http.routers.whoami.entrypoints=web"
      - "traefik.http.routers.whoami.entrypoints=websecure"
      - "traefik.http.routers.whoami.tls.certresolver=myresolver"

  #wireguard:
  #  image: lscr.io/linuxserver/wireguard:latest
  #  container_name: wireguard
  #  labels:
  #    - "traefik.enable=true"
  #  cap_add:
  #    - NET_ADMIN
  #    #- SYS_MODULE
  #  environment:
  #    - PUID=1000
  #    - PGID=1000
  #    - TZ=Europe/Berlin
  #    #- SERVERURL=wireguard.oxmox.root.sx #optional
  #    - SERVERPORT=51820 #optional
  #    - PEERS=1 #optional
  #    - PEERDNS=auto #optional
  #    - INTERNAL_SUBNET=10.42.23.0 #optional
  #    - ALLOWEDIPS=10.42.23.0/24 #optional
  #    - PERSISTENTKEEPALIVE_PEERS= #optional
  #    - LOG_CONFS=true #optional
  #  volumes:
  #    - ./wireguard:/config
  #    #- /lib/modules:/lib/modules #optional
  #  ports:
  #    - 51820:51820/udp
  #  sysctls:
  #    - net.ipv4.conf.all.src_valid_mark=1
  #  restart: unless-stopped
initial commit: traefik and letsencrypt working 2023-09-03 03:13:03 +02:00			`version: "3.3"`

			`services:`

			`traefik:`
			`image: "traefik:v2.10"`
			`container_name: "traefik"`
			`command:`
			`- "--log.level=DEBUG"`
			`- "--api.insecure=false"`
			`- "--providers.docker=true"`
			`- "--providers.docker.exposedbydefault=false"`
			`#- "--entrypoints.web.address=:80"`
			`- "--entrypoints.websecure.address=:443"`
			`- "--certificatesresolvers.myresolver.acme.tlschallenge=true"`
			`#- "--certificatesresolvers.myresolver.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory"`
			`- "--certificatesresolvers.myresolver.acme.email=badctoxymoron@gmx.de"`
			`- "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"`
			`ports:`
			`#- "80:80"`
			`- "443:443"`
			`- "8080:8080"`
			`volumes:`
			`- "./letsencrypt:/letsencrypt"`
			`- "/var/run/docker.sock:/var/run/docker.sock:ro"`

			`whoami:`
			`image: "traefik/whoami"`
			`container_name: "simple-service"`
			`labels:`
			`- "traefik.enable=true"`
			- "traefik.http.routers.whoami.rule=Host(`oxmox.root.sx`)"
			`#- "traefik.http.routers.whoami.entrypoints=web"`
			`- "traefik.http.routers.whoami.entrypoints=websecure"`
			`- "traefik.http.routers.whoami.tls.certresolver=myresolver"`
add working but disabled wireguard conf Need to figure out what I actually want from wireguard, then set it up properly. 2023-09-03 14:17:09 +02:00
			`#wireguard:`
			`# image: lscr.io/linuxserver/wireguard:latest`
			`# container_name: wireguard`
			`# labels:`
			`# - "traefik.enable=true"`
			`# cap_add:`
			`# - NET_ADMIN`
			`# #- SYS_MODULE`
			`# environment:`
			`# - PUID=1000`
			`# - PGID=1000`
			`# - TZ=Europe/Berlin`
			`# #- SERVERURL=wireguard.oxmox.root.sx #optional`
			`# - SERVERPORT=51820 #optional`
			`# - PEERS=1 #optional`
			`# - PEERDNS=auto #optional`
			`# - INTERNAL_SUBNET=10.42.23.0 #optional`
			`# - ALLOWEDIPS=10.42.23.0/24 #optional`
			`# - PERSISTENTKEEPALIVE_PEERS= #optional`
			`# - LOG_CONFS=true #optional`
			`# volumes:`
			`# - ./wireguard:/config`
			`# #- /lib/modules:/lib/modules #optional`
			`# ports:`
			`# - 51820:51820/udp`
			`# sysctls:`
			`# - net.ipv4.conf.all.src_valid_mark=1`
			`# restart: unless-stopped`