-
Notifications
You must be signed in to change notification settings - Fork 24
Expand file tree
/
Copy pathtraefik-compose.yaml
More file actions
62 lines (59 loc) · 2.45 KB
/
traefik-compose.yaml
File metadata and controls
62 lines (59 loc) · 2.45 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
x-logging: &default-logging
driver: json-file
options:
max-size: '2m'
max-file: '5'
mode: non-blocking
services:
reverse-proxy:
image: traefik:${TRAEFIK_VERSION:-latest}
container_name: traefik
restart: ${RESTART_POLICY:-unless-stopped}
logging: *default-logging
command:
# - --log.level=DEBUG
- --accesslog=true
- --ping=true
# - --metrics.prometheus=true
- --global.sendanonymoususage=false
- --providers.docker.exposedByDefault=false
- --providers.docker.network=traefik
- --entrypoints.web.address=:80
- --entrypoints.web.http.redirections.entrypoint.to=websecure
- --entrypoints.web.http.redirections.entrypoint.scheme=https
- --entrypoints.websecure.address=:443
- --entrypoints.websecure.http.tls.certresolver=${LE_CHALLENGE:-tls}
- --certificatesresolvers.tls.acme.storage=/etc/traefik/acme/acme-tls.json
- --certificatesresolvers.tls.acme.email=${LE_EMAIL:-${SUPPORT_EMAIL:-support@${DOMAIN}}}
## uncomment for LE-STAGING server, to avoid exceeding LetsEncrypt quota when fiddling with a new configuration
#- --certificatesresolvers.tls.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory
- --certificatesresolvers.tls.acme.tlschallenge=true
- --certificatesresolvers.dns.acme.storage=/etc/traefik/acme/acme-dns.json
- --certificatesresolvers.dns.acme.email=${LE_EMAIL:-${SUPPORT_EMAIL:-support@${DOMAIN}}}
## uncomment for LE-STAGING server, to avoid exceeding LetsEncrypt quota when fiddling with a new configuration
#- --certificatesresolvers.dns.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory
- --certificatesresolvers.dns.acme.dnschallenge=true
- --certificatesresolvers.dns.acme.dnschallenge.provider=${LE_DNS_PROVIDER}
## load plugin to support static response on "mta-sts" subdomain
- --experimental.plugins.staticresponse.moduleName=github.com/jdel/staticresponse
- --experimental.plugins.staticresponse.version=v0.0.1
env_file: .env
ports:
- "80:80"
- "443:443"
networks:
- traefik
volumes:
- /var/run/docker.sock:/var/run/docker.sock:ro
- traefik-acme:/etc/traefik/acme
extra_hosts:
- host.docker.internal:host-gateway
healthcheck:
test: ["CMD", "traefik", "healthcheck", "--ping"]
volumes:
traefik-acme:
name: traefik-acme
networks:
traefik:
name: traefik
driver: bridge