Compose-Examples/examples/traefik/docker-compose.yml

37 lines
1.5 KiB
YAML
Raw Normal View History

2023-02-15 21:45:31 +00:00
services:
2023-02-15 21:45:31 +00:00
traefik:
2024-11-28 17:31:57 +00:00
image: traefik:v3.2
2023-02-15 21:45:31 +00:00
container_name: traefik
restart: always
2023-02-15 21:45:31 +00:00
ports:
- 80:80/tcp # http
- 443:443/tcp # https
- 443:443/udp # https http3 quic
- 127.0.0.1:8080:8080 # http api dashboard
expose:
- 80 # http
- 443 # https
- 8080 # http api dashboard
2023-02-15 21:45:31 +00:00
volumes:
- /var/run/docker.sock:/var/run/docker.sock:ro # ro = read-only access to the docker.sock
- ${DOCKER_VOLUME_STORAGE:-/mnt/docker-volumes}/traefik:/etc/traefik/ # put the provided traefik.yml and fileConfig.yml files at this location
- ${DOCKER_VOLUME_STORAGE:-/mnt/docker-volumes}/traefik/logs:/logs
2023-02-15 21:45:31 +00:00
environment:
- TZ=Europe/Berlin
2024-01-13 19:14:28 +00:00
- CF_DNS_API_TOKEN=MyCloudflareApiToken # change this if you use Cloudflare
2023-02-15 21:45:31 +00:00
labels:
- traefik.enable=true
- traefik.http.routers.api.rule=Host(`traefik.example.com`) # Define the subdomain for the traefik dashboard.
- traefik.http.routers.api.service=api@internal # Enable Traefik API.
2023-02-19 12:49:32 +00:00
- traefik.http.routers.api.middlewares=local-ipwhitelist@file,basic-auth@file # protect dashboard with basic auth and restrict access to private class subnets only
#- traefik.http.middlewares.basic-auth-global.basicauth.users=admin:$$apr1$$epoKf5li$$QfTMJZOCS/halv3CiIUEu0 # protect the traefik dashboard by basic auth (pw=password)
2023-02-15 21:45:31 +00:00
extra_hosts:
- host.docker.internal:172.17.0.1
networks:
- proxy
2023-02-15 21:45:31 +00:00
networks:
proxy:
2024-11-28 17:31:57 +00:00
external: true