diff --git a/docker-compose.yaml b/docker-compose.yaml index e0d2ed7..df02276 100644 --- a/docker-compose.yaml +++ b/docker-compose.yaml @@ -25,6 +25,7 @@ services: - EMAIL - PRIVATE_DOMAIN - PUBLIC_DOMAIN + - TRAEFIK_CERTIFICATERESOLVERS_LE_ACME_EMAIL networks: web: ipv4_address: 172.18.1.2 diff --git a/traefik/config/network.yaml b/traefik/config/network.yaml index 6c40a79..469eddf 100644 --- a/traefik/config/network.yaml +++ b/traefik/config/network.yaml @@ -9,7 +9,12 @@ http: proxmox: loadBalancer: servers: - - url: http://192.168.0.10:8006 + - url: https://192.168.0.10:8006 + prusa: + loadBalancer: + servers: + - url: http://192.168.0.14 + routers: pfsense: @@ -26,4 +31,11 @@ http: - auth tls: certResolver: le + prusa: + service: prusa + rule: Host(`prusa.{{env "PRIVATE_DOMAIN"}}`) + middlewares: + - auth + tls: + certResolver: le diff --git a/traefik/config/security.yaml b/traefik/config/security.yaml index 0cbc9d2..44fc7ea 100644 --- a/traefik/config/security.yaml +++ b/traefik/config/security.yaml @@ -13,7 +13,8 @@ http: # Catch all requests to the http entrypoint and redirect them to https service: http-catchall rule: hostregexp(`{host:.+}`) - entrypoint: web + entryPoints: + - web middlewares: - redir diff --git a/traefik/traefik.yaml b/traefik/traefik.yaml index ed32712..7d202c7 100644 --- a/traefik/traefik.yaml +++ b/traefik/traefik.yaml @@ -12,7 +12,7 @@ providers: log: filePath: /data/traefik.log - level: DEBUG + level: INFO entryPoints: web: @@ -23,7 +23,8 @@ entryPoints: certificatesResolvers: le: acme: - email: '{{ env "EMAIL" }}' + # caServer: https://acme-staging-v02.api.letsencrypt.org/directory + # email: SET BY ENV VARIABLE TRAEFIK_CERTIFICATERESOLVERS_LE_ACME_EMAIL storage: /data/acme.json httpChallenge: entrypoint: web