Merge pull request #102 from ChristianLempa/101-update-traefik-config

101 update traefik config
2025-01-23 22:58:56 +01:00 · 2023-08-16 14:29:50 +02:00 · 2023-08-16 14:29:50 +02:00 · dad1f86265
commit dad1f86265
parent e9257dc1a1 064256a3a2
2 changed files with 47 additions and 32 deletions
--- a/docker-compose/traefik/config/traefik.yaml
+++ b/docker-compose/traefik/config/traefik.yaml
@ -1,89 +1,93 @@
 global:
-  checkNewVersion: true
-  sendAnonymousUsage: false  # true by default
+  checkNewVersion: false
+  sendAnonymousUsage: false

-# (Optional) Log information
-# ---
+# -- (Optional) Change Log Level and Format here...
+#     - loglevels [DEBUG, INFO, WARNING, ERROR, CRITICAL]
+#     - format [common, json, logfmt]
 # log:
-#  level: ERROR  # DEBUG, INFO, WARNING, ERROR, CRITICAL
-#   format: common  # common, json, logfmt
+#  level: ERROR
+#   format: common
 #   filePath: /var/log/traefik/traefik.log

-# (Optional) Accesslog
-# ---
+# -- (Optional) Enable Accesslog and change Format here...
+#     - format [common, json, logfmt]
 # accesslog:
-  # format: common  # common, json, logfmt
-  # filePath: /var/log/traefik/access.log
+#   format: common
+#   filePath: /var/log/traefik/access.log

-# (Optional) Enable API and Dashboard
-# ---
+# -- (Optional) Enable API and Dashboard here, don't do in production
 # api:
-#  dashboard: true  # true by default
-#  insecure: true  # Don't do this in production!
+#   dashboard: true
+#   insecure: true

-# Entry Points configuration
-# ---
+# -- Change EntryPoints here...
 entryPoints:
  web:
    address: :80
-    # (Optional) Redirect to HTTPS
-    # ---
+    # -- (Optional) Redirect all HTTP to HTTPS
    # http:
    #   redirections:
    #     entryPoint:
    #       to: websecure
    #       scheme: https
-
  websecure:
    address: :443
+  # -- (Optional) Add custom Entrypoint
+  # custom:
+  #   address: :8080

-# Configure your CertificateResolver here...
-# ---
+# -- Configure your CertificateResolver here...
 # certificatesResolvers:
 #   staging:
 #     acme:
 #       email: your-email@example.com
 #       storage: /etc/traefik/certs/acme.json
 #       caServer: "https://acme-staging-v02.api.letsencrypt.org/directory"
+#       -- (Optional) Remove this section, when using DNS Challenge
 #       httpChallenge:
 #         entryPoint: web
-#       -- or pick dns challenge
+#       -- (Optional) Configure DNS Challenge
 #       dnsChallenge:
 #         provider: your-resolver (e.g. cloudflare)
 #         resolvers:
 #           - "1.1.1.1:53"
 #           - "8.8.8.8:53"
-
 #   production:
 #     acme:
 #       email: your-email@example.com
 #       storage: /etc/traefik/certs/acme.json
 #       caServer: "https://acme-v02.api.letsencrypt.org/directory"
+#       -- (Optional) Remove this section, when using DNS Challenge
 #       httpChallenge:
 #         entryPoint: web
-#       -- or pick dns challenge
+#       -- (Optional) Configure DNS Challenge
 #       dnsChallenge:
 #         provider: your-resolver (e.g. cloudflare)
 #         resolvers:
 #           - "1.1.1.1:53"
 #           - "8.8.8.8:53"

-# (Optional) Overwrite Default Certificates
+# -- (Optional) Disable TLS Cert verification check
+# serversTransport:
+#   insecureSkipVerify: true
+
+# -- (Optional) Overwrite Default Certificates
 # tls:
 #   stores:
 #     default:
 #       defaultCertificate:
 #         certFile: /etc/traefik/certs/cert.pem
 #         keyFile: /etc/traefik/certs/cert-key.pem
-# (Optional) Disable TLS version 1.0 and 1.1
+# -- (Optional) Disable TLS version 1.0 and 1.1
 #   options:
 #     default:
 #       minVersion: VersionTLS12

 providers:
  docker:
-    exposedByDefault: false  # Default is true
+    # -- (Optional) Enable this, if you want to expose all containers automatically
+    exposedByDefault: false
  file:
-    # watch for dynamic configuration changes
    directory: /etc/traefik
    watch: true
--- a/docker-compose/traefik/docker-compose.yaml
+++ b/docker-compose/traefik/docker-compose.yaml
@ -1,13 +1,24 @@
 ---
+# -- (Optional) When using a custom network
+# networks:
+#   your-traefik-network:
+#     external: true
 services:
  traefik:
-    image: traefik:v2.5
+    image: traefik:v2.10.4
    container_name: traefik
    ports:
      - 80:80
      - 443:443
-      # - 8080:8080  # (optional) expose the dashboard !don't use in production!
+      # -- (Optional) Enable Dashboard, don't do in production
+      # - 8080:8080
    volumes:
-      - /etc/traefik:/etc/traefik
+      - ./config:/etc/traefik
      - /var/run/docker.sock:/var/run/docker.sock:ro
-    restart: unless-stopped
+    # -- (Optional) When using Cloudflare as Cert Resolver
+    # environment:
+    #   - CF_DNS_API_TOKEN=your-cloudflare-api-token
+    # -- (Optional) When using a custom network
+    # networks:
+    #   - your-traefik-network
+    restart: unless-stopped