homeserver/docker-compose/traefik/file-provider.yml

38 lines
934 B
YAML
Raw Normal View History

# TCP da SSH keine Hostnamen kennt
http:
###### router #####
routers:
2024-11-10 17:30:54 +01:00
router_forgejo:
rule: "Host(`git.mgrote.net`)"
2024-11-10 17:30:54 +01:00
service: "service_forgejo"
middlewares:
2024-11-10 17:55:06 +01:00
- "ratelimit40@file"
entrypoints:
- entry_https
tls:
certresolver: resolver_letsencrypt
###### services #####
services:
2024-11-10 17:30:54 +01:00
service_forgejo:
loadBalancer:
servers:
- url: "http://forgejo.mgrote.net:3000/"
###### middlewares #####
middlewares:
2024-11-10 17:34:10 +01:00
ratelimit40:
rateLimit:
average: 40
burst: 80
sourceCriterion:
ipStrategy:
depth: 2
2024-11-10 17:38:36 +01:00
allowlist_localnet:
ipallowlist:
sourcerange:
- 192.168.2.0/24
- 10.25.25.0/24
- 192.168.48.0/24 # docker
#- 172.18.0.0/16 # ???
ipstrategy:
depth: 0 # https://doc.traefik.io/traefik/middlewares/http/ipallowlist/#ipstrategydepth