From 00a49e40b390a838420e7e92ed4bcc906cd7c4f7 Mon Sep 17 00:00:00 2001 From: NotII <46204250+NotII@users.noreply.github.com> Date: Sun, 9 Mar 2025 01:39:12 +0000 Subject: [PATCH] traefik --- docker-compose.yml | 9 +++++---- traefik.yml | 8 ++++++++ 2 files changed, 13 insertions(+), 4 deletions(-) create mode 100644 traefik.yml diff --git a/docker-compose.yml b/docker-compose.yml index f271c3a..0887431 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -3,6 +3,7 @@ version: '3.8' services: traefik: image: traefik:v2.5 + container_name: traefik command: - "--api.insecure=true" - "--log.level=DEBUG" @@ -12,12 +13,14 @@ services: - "--entrypoints.web.address=:80" - "--entrypoints.websecure.address=:443" - "--entrypoints.websecure.forwardedHeaders.trustedIPs=212.113.116.6,194.26.229.41,138.124.13.13" + - "--providers.file.filename=/etc/traefik/traefik.yml" # Load the configuration file for middleware ports: - "80:80" - "443:443" - "8080:8080" volumes: - "/var/run/docker.sock:/var/run/docker.sock" + - "./traefik.yml:/etc/traefik/traefik.yml" # Mount the config file to Traefik container networks: - web @@ -30,11 +33,9 @@ services: - "3000" labels: - "traefik.enable=true" - # Use either Host header or alternative routing - "traefik.http.routers.nextjs-app.rule=Host(`dash.embermarket.app`) || PathPrefix(`/`)" - "traefik.http.services.nextjs-app.loadbalancer.server.port=3000" - - "traefik.http.routers.nextjs-app.middlewares=ip-whitelist@file" - # Add fallback entrypoint if needed + - "traefik.http.routers.nextjs-app.middlewares=ip-whitelist@file" # Apply the IP whitelist middleware - "traefik.http.routers.nextjs-app.entrypoints=websecure" networks: - web @@ -45,4 +46,4 @@ services: networks: web: - external: true \ No newline at end of file + external: true diff --git a/traefik.yml b/traefik.yml new file mode 100644 index 0000000..6245722 --- /dev/null +++ b/traefik.yml @@ -0,0 +1,8 @@ +http: + middlewares: + ip-whitelist: + ipWhiteList: + sourceRange: + - "212.113.116.6" + - "194.26.229.41" + - "138.124.13.13"