home/docker
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b3bc0666c488bc38f7a2a888737b139c9928550b
docker/networking/docker-compose.yaml

144 lines
4.0 KiB
YAML
Raw Blame History

version: "3.9"
volumes:
pihole:
name: pihole
dnsmasq:
name: dnsmasq
samba-config:
name: samba-config
networks:
networking:
name: networking
external: false
home:
external: false
driver: macvlan
enable_ipv6: true
driver_opts:
parent: enp2s0
ipam:
config:
- subnet: 192.168.178.0/24
gateway: 192.168.178.1
ip_range: 192.168.178.2/29 # 2 - 6
- subnet: fd00::/64
gateway: fd00::de15:c8ff:feec:9960
ip_range: fd00::1/80
name: home
proxy:
external: true
services:
pihole:
image: pihole/pihole
cap_add:
- NET_ADMIN
container_name: pihole
hostname: pihole
environment:
ServerIP: 192.168.178.2
ServerIPv6: fd00::2
TZ: "Europe/Berlin"
WEBPASSWORD: "lmaa,dw."
PIHOLE_DNS_: 192.168.178.3;192.168.178.3
VIRTUAL_HOST: pihole.fam-steinle.de
CORS_HOSTS: homer.fam-steinle.de
mac_address: d0:ca:ab:cd:ef:01
networks:
home:
ipv4_address: 192.168.178.2
ipv6_address: fd00::2
ports:
- "80:80"
- "443:443"
- "53:53/tcp"
- "53:53/udp"
restart: unless-stopped
volumes:
- pihole:/etc/pihole/
- dnsmasq:/etc/dnsmasq.d/
labels:
- "traefik.enable=true"
- "traefik.http.routers.pihole.entrypoints=web"
- "traefik.http.routers.pihole.rule=Host(`pihole.fam-steinle.de`)"
- "traefik.http.routers.pihole.middlewares=pihole"
- "traefik.http.middlewares.pihole.redirectscheme.scheme=https"
- "traefik.http.routers.pihole-secure.entrypoints=websecure"
- "traefik.http.routers.pihole-secure.rule=Host(`pihole.fam-steinle.de`)"
- "traefik.http.routers.pihole-secure.middlewares=pihole-secure"
- "traefik.http.middlewares.pihole-secure.headers.addvaryheader=true"
- "traefik.http.middlewares.pihole-secure.headers.accesscontrolalloworiginlist=https://homer.fam-steinle.de"
- "traefik.http.routers.pihole-secure.service=pihole-secure"
- "traefik.http.routers.pihole-secure.tls=true"
- "traefik.http.routers.pihole-secure.tls.certresolver=myresolver"
- "traefik.http.services.pihole-secure.loadbalancer.server.port=80"
unbound:
image: mvance/unbound
container_name: unbound
hostname: unbound
networks:
home:
ipv4_address: 192.168.178.3
ipv6_address: fd00::3
ports:
- "53:53/tcp"
- "53:53/udp"
restart: unless-stopped
# Must add "ntlm auth = yes" to global section in smb.conf
# adduser and smbpasswd have to be run
# Sample smb.conf is copied to repo.
nfs:
image: gists/nfs-server
container_name: nfs
hostname: nfs
privileged: true
cap_add:
- SYS_ADMIN
- SETPCAP
networks:
- networking
ports:
- "2049:2049"
environment:
NFS_DIR: /nfs-share
NFS_DOMAIN: 192.168.178.0/24
NFS_OPTION: rw,sync,no_subtree_check,nohide,no_root_squash
volumes:
- /media/backup:/nfs-share
restart: unless-stopped
sftp:
image: drakkan/sftpgo:alpine-slim
container_name: sftp
hostname: sftp
ports:
- "2022:2022"
networks:
- proxy
environment:
SFTPGO_HTTPD__BINDINGS__0__PORT: 8090
restart: unless-stopped
volumes:
- /media/backup/sftp/data:/srv/sftpgo
- /media/backup/sftp/home:/var/lib/sftpgo
labels:
- "traefik.enable=true"
- "traefik.http.routers.sftp.entrypoints=web"
- "traefik.http.routers.sftp.rule=Host(`sftp.fam-steinle.de`)"
- "traefik.http.routers.sftp.middlewares=sftp"
- "traefik.http.middlewares.sftp.redirectscheme.scheme=https"
- "traefik.http.routers.sftp-secure.entrypoints=websecure"
- "traefik.http.routers.sftp-secure.rule=Host(`sftp.fam-steinle.de`)"
- "traefik.http.routers.sftp-secure.service=sftp-secure"
- "traefik.http.routers.sftp-secure.tls=true"
- "traefik.http.routers.sftp-secure.tls.certresolver=myresolver"
- "traefik.http.services.sftp-secure.loadbalancer.server.port=8090"
Reference in New Issue View Git Blame Copy Permalink