Update stack.production.yml
This commit is contained in:
colin
parent
a368bcaf22
commit
f28d356872
|
|
@ -8,7 +8,7 @@ services:
|
||||||
- /mnt/tank/persist/nixc.us/headscale/production/data:/var/lib/headscale/:rw
|
- /mnt/tank/persist/nixc.us/headscale/production/data:/var/lib/headscale/:rw
|
||||||
command: ["headscale", "serve"]
|
command: ["headscale", "serve"]
|
||||||
networks:
|
networks:
|
||||||
- traefik
|
- default
|
||||||
environment:
|
environment:
|
||||||
SERVER_URL: "https://headscale.nixc.us"
|
SERVER_URL: "https://headscale.nixc.us"
|
||||||
LISTEN_ADDR: "0.0.0.0:8080"
|
LISTEN_ADDR: "0.0.0.0:8080"
|
||||||
|
|
@ -20,20 +20,44 @@ services:
|
||||||
placement:
|
placement:
|
||||||
constraints:
|
constraints:
|
||||||
- node.hostname == macmini3
|
- node.hostname == macmini3
|
||||||
labels:
|
# labels:
|
||||||
us.nixc.autodeploy: "true"
|
# us.nixc.autodeploy: "true"
|
||||||
traefik.enable: "true"
|
# traefik.enable: "true"
|
||||||
traefik.http.routers.production-headscale_headscale.rule: "Host(`headscale.nixc.us`)"
|
# traefik.http.routers.production-headscale_headscale.rule: "Host(`headscale.nixc.us`)"
|
||||||
traefik.http.routers.production-headscale_headscale.entrypoints: "websecure"
|
# traefik.http.routers.production-headscale_headscale.entrypoints: "websecure"
|
||||||
traefik.http.routers.production-headscale_headscale.tls: "true"
|
# traefik.http.routers.production-headscale_headscale.tls: "true"
|
||||||
traefik.http.routers.production-headscale_headscale.tls.certresolver: "letsencryptresolver"
|
# traefik.http.routers.production-headscale_headscale.tls.certresolver: "letsencryptresolver"
|
||||||
traefik.http.routers.production-headscale_headscale.service: "production-headscale_headscale"
|
# traefik.http.routers.production-headscale_headscale.service: "production-headscale_headscale"
|
||||||
traefik.http.services.production-headscale_headscale.loadbalancer.server.port: "8080"
|
# traefik.http.services.production-headscale_headscale.loadbalancer.server.port: "8080"
|
||||||
traefik.docker.network: "traefik"
|
# traefik.docker.network: "traefik"
|
||||||
|
|
||||||
replicas: 1
|
replicas: 1
|
||||||
restart_policy:
|
restart_policy:
|
||||||
condition: on-failure
|
condition: on-failure
|
||||||
|
nginx:
|
||||||
|
image: git.nixc.us/colin/reverse:production
|
||||||
|
environment:
|
||||||
|
- BACKEND_ADDRESS=192.168.8.1
|
||||||
|
- BACKEND_PORT=8080
|
||||||
|
- PROTOCOL=http
|
||||||
|
deploy:
|
||||||
|
replicas: 1
|
||||||
|
placement:
|
||||||
|
constraints:
|
||||||
|
- node.hostname == macmini14
|
||||||
|
labels:
|
||||||
|
us.nixc.autodeploy: "true"
|
||||||
|
traefik.enable: "true"
|
||||||
|
traefik.http.routers.production-headscale_nginx.tls: "true"
|
||||||
|
traefik.http.services.production-headscale_nginx.loadbalancer.server.port: "80"
|
||||||
|
traefik.http.routers.production-headscale_nginx.rule: "Host(`headscale.nixc.us`)"
|
||||||
|
traefik.http.routers.production-headscale_nginx.entrypoints: "websecure"
|
||||||
|
traefik.http.routers.production-headscale_nginx.tls.certresolver: "letsencryptresolver"
|
||||||
|
traefik.http.routers.production-headscale_nginx.service: "production-headscale_nginx"
|
||||||
|
traefik.http.routers.production-headscale_nginx.middlewares: "authelia_authelia@docker"
|
||||||
|
traefik.docker.network: "traefik"
|
||||||
|
networks:
|
||||||
|
- traefik
|
||||||
|
- default
|
||||||
# volumes:
|
# volumes:
|
||||||
# headscale:
|
# headscale:
|
||||||
networks:
|
networks:
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue