-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathtraefik.yml
More file actions
62 lines (51 loc) · 1.54 KB
/
traefik.yml
File metadata and controls
62 lines (51 loc) · 1.54 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
## Static configuration
providers:
docker:
endpoint: "unix:///var/run/docker.sock"
network: frontend # docker network create frontend
exposedByDefault: false # containers that do not have a traefik.enable=true label are ignored
file:
filename: /traefik_dynamic.yml
watch: true
entryPoints:
web:
address: ":80"
http:
redirections: # enable redirecting of all incoming requests on 80 to 443
entryPoint:
to: websecure
websecure:
address: ":443"
http:
middlewares:
- crowdsec@file
certificatesResolvers:
myresolver:
acme:
# caserver: "https://acme-staging-v02.api.letsencrypt.org/directory" # for staging server
tlsChallenge: {}
email: jturbeaux@pm.me
storage: "/letsencrypt/acme.json"
# httpchallenge:
# entryPoint:
# web
# Ajout plugin CrowdSec
experimental:
plugins:
crowdsec-bouncer-traefik-plugin:
moduleName: "github.com/maxlerebourg/crowdsec-bouncer-traefik-plugin"
version: "v1.4.5" # adapte selon version stable sur https://github.com/maxlerebourg/crowdsec-bouncer-traefik-plugin
accessLog:
filePath: "/var/log/traefik/access.log"
format: json
filters:
statusCodes:
- "200-299" # log successful http requests
- "400-599" # log failed http requests
# collect logs as in-memory buffer before writing into log file
bufferingSize: 0
fields:
headers:
defaultMode: drop # drop all headers per default
names:
User-Agent: keep # log user agent strings