traefik

docker-compose.yml

@@ -3,6 +3,7 @@ version: '3.8'
 services:
   traefik:
     image: traefik:v2.5
+    container_name: traefik
     command:
       - "--api.insecure=true"
       - "--log.level=DEBUG"
@@ -12,12 +13,14 @@ services:
       - "--entrypoints.web.address=:80"
       - "--entrypoints.websecure.address=:443"
       - "--entrypoints.websecure.forwardedHeaders.trustedIPs=212.113.116.6,194.26.229.41,138.124.13.13"
+      - "--providers.file.filename=/etc/traefik/traefik.yml"  # Load the configuration file for middleware
     ports:
       - "80:80"
       - "443:443"
       - "8080:8080"
     volumes:
       - "/var/run/docker.sock:/var/run/docker.sock"
+      - "./traefik.yml:/etc/traefik/traefik.yml"  # Mount the config file to Traefik container
     networks:
       - web
 
@@ -30,11 +33,9 @@ services:
       - "3000"
     labels:
       - "traefik.enable=true"
-      # Use either Host header or alternative routing
       - "traefik.http.routers.nextjs-app.rule=Host(`dash.embermarket.app`) || PathPrefix(`/`)"
       - "traefik.http.services.nextjs-app.loadbalancer.server.port=3000"
-      - "traefik.http.routers.nextjs-app.middlewares=ip-whitelist@file"
+      - "traefik.http.routers.nextjs-app.middlewares=ip-whitelist@file"  # Apply the IP whitelist middleware
-      # Add fallback entrypoint if needed
       - "traefik.http.routers.nextjs-app.entrypoints=websecure"
     networks:
       - web
@@ -45,4 +46,4 @@ services:
 
 networks:
   web:
-    external: true
+    external: true

traefik.yml

@@ -0,0 +1,8 @@
+http:
+  middlewares:
+    ip-whitelist:
+      ipWhiteList:
+        sourceRange:
+          - "212.113.116.6"
+          - "194.26.229.41"
+          - "138.124.13.13"