Improve install and modify Traefik IP restriction

This commit is contained in:
Kris Lamoureux 2023-11-02 21:49:00 -04:00
parent 10e2933e9c
commit eb4febee5c
Signed by: kris
GPG Key ID: 3EDA9C3441EDA925
2 changed files with 13 additions and 5 deletions

15
Vagrantfile vendored
View File

@ -2,11 +2,18 @@ Vagrant.configure("2") do |config|
config.vm.box = "debian/bookworm64" config.vm.box = "debian/bookworm64"
config.vm.provision "shell", inline: <<-SHELL config.vm.provision "shell", inline: <<-SHELL
set -xe set -xe
apt-get update
apt-get install -y curl # Install Docker
curl -fsSL https://get.docker.com | sh which curl &>/dev/null || (apt-get update && apt-get install -y curl)
docker swarm init which docker &>/dev/null || curl -fsSL https://get.docker.com | sh
# Swarm?
[ ! "$(docker info | grep -c 'Swarm: active')" -eq 1 ] && docker swarm init
# Start Traefik compose
mkdir -p /vagrant/traefik/letsencrypt
cd /vagrant/traefik || exit 1 cd /vagrant/traefik || exit 1
docker compose up -d docker compose up -d
SHELL SHELL
end end

View File

@ -35,7 +35,8 @@ services:
- "traefik.http.routers.traefik.middlewares=localonly" - "traefik.http.routers.traefik.middlewares=localonly"
- "traefik.http.routers.traefik.service=api@internal" - "traefik.http.routers.traefik.service=api@internal"
- "traefik.http.routers.traefik.tls=true" - "traefik.http.routers.traefik.tls=true"
- "traefik.http.middlewares.localonly.ipwhitelist.sourcerange=10.0.0.0/8" #- "traefik.http.middlewares.localonly.ipwhitelist.sourcerange=10.0.0.0/8"
- "traefik.http.middlewares.localonly.ipwhitelist.sourcerange=172.16.0.0/12,10.0.0.0/8" # vagrant verison
whoami: whoami:
image: "traefik/whoami" image: "traefik/whoami"
networks: networks: