homeserver/docker-compose/traefik/file-provider.yml

38 lines
945 B
YAML
Raw Permalink Normal View History

# TCP da SSH keine Hostnamen kennt
http:
###### router #####
routers:
2024-11-10 17:30:54 +01:00
router_forgejo:
rule: "Host(`git.mgrote.net`)"
2024-11-10 17:30:54 +01:00
service: "service_forgejo"
middlewares:
- "ratelimit40@file"
entrypoints:
- entry_https
tls:
certresolver: resolver_letsencrypt
###### services #####
services:
2024-11-10 17:30:54 +01:00
service_forgejo:
loadBalancer:
servers:
- url: "http://forgejo.mgrote.net:3000/"
###### middlewares #####
middlewares:
ratelimit40:
rateLimit:
average: 40
burst: 80
sourceCriterion:
ipStrategy:
depth: 2
allowlist_localnet:
ipallowlist:
sourcerange:
- 192.168.2.0/24
- 10.25.25.0/24
- 192.168.48.0/24 # docker
2024-11-10 19:45:26 +01:00
- 172.18.0.0/16 # gitea-act-runner
ipstrategy:
depth: 0 # https://doc.traefik.io/traefik/middlewares/http/ipallowlist/#ipstrategydepth