added monitoring container networking over wireguard
This commit is contained in:
cventastic
@@ -4,34 +4,34 @@ services:
|
|||||||
|
|
||||||
### TRAEFIK
|
### TRAEFIK
|
||||||
# Basic Auth not working. Problems with parsing var from .env
|
# Basic Auth not working. Problems with parsing var from .env
|
||||||
# traefik:
|
traefik:
|
||||||
# image: traefik:latest
|
image: traefik:latest
|
||||||
# container_name: traefik
|
container_name: traefik
|
||||||
# restart: always
|
restart: always
|
||||||
# ports:
|
ports:
|
||||||
# - "443:443"
|
- "443:443"
|
||||||
# - "127.0.0.1:8080:8080"
|
- "127.0.0.1:8080:8080"
|
||||||
# networks:
|
networks:
|
||||||
# - $NET_POKT
|
- $NET_POKT
|
||||||
# command:
|
command:
|
||||||
# - "--api=true"
|
- "--api=true"
|
||||||
# - "--api.insecure=true"
|
- "--api.insecure=true"
|
||||||
# - "--api.dashboard=true"
|
- "--api.dashboard=true"
|
||||||
# - "--log.level=DEBUG"
|
- "--log.level=DEBUG"
|
||||||
# - "--providers.docker=true"
|
- "--providers.docker=true"
|
||||||
# - "--providers.docker.exposedbydefault=false"
|
- "--providers.docker.exposedbydefault=false"
|
||||||
# - "--entrypoints.websecure.address=:443"
|
- "--entrypoints.websecure.address=:443"
|
||||||
# - "--certificatesresolvers.myresolver.acme.tlschallenge=true"
|
- "--certificatesresolvers.myresolver.acme.tlschallenge=true"
|
||||||
# # TESTING
|
# TESTING
|
||||||
# # - "--certificatesresolvers.myresolver.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory"
|
# - "--certificatesresolvers.myresolver.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory"
|
||||||
# - "--certificatesresolvers.myresolver.acme.email=$MAIL"
|
- "--certificatesresolvers.myresolver.acme.email=$MAIL"
|
||||||
# - "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
|
- "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
|
||||||
# volumes:
|
volumes:
|
||||||
# - "./traefik/letsencrypt:/letsencrypt"
|
- "./traefik/letsencrypt:/letsencrypt"
|
||||||
# - "/var/run/docker.sock:/var/run/docker.sock:ro"
|
- "/var/run/docker.sock:/var/run/docker.sock:ro"
|
||||||
# labels:
|
labels:
|
||||||
# - "traefik.enable=true"
|
- "traefik.enable=true"
|
||||||
# - 'traefik.http.middlewares.auth.basicauth.users=$AUTH_HTTP'
|
- "traefik.http.middlewares.auth.basicauth.users=$AUTH_HTTP"
|
||||||
|
|
||||||
### NODES
|
### NODES
|
||||||
geth-goerli:
|
geth-goerli:
|
||||||
@@ -164,13 +164,13 @@ services:
|
|||||||
- pocket-mainnet:/home/app/.pocket
|
- pocket-mainnet:/home/app/.pocket
|
||||||
networks:
|
networks:
|
||||||
- $NET_POKT
|
- $NET_POKT
|
||||||
# labels:
|
labels:
|
||||||
# - "traefik.enable=true"
|
- "traefik.enable=true"
|
||||||
# - "traefik.http.services.myservice.loadbalancer.server.port=8081"
|
- "traefik.http.services.myservice.loadbalancer.server.port=8081"
|
||||||
# - "traefik.http.routers.pocket-mainnet.rule=Host(`$DOMAIN`)"
|
- "traefik.http.routers.pocket-mainnet.rule=Host(`$DOMAIN`)"
|
||||||
# - "traefik.http.routers.pocket-mainnet.entrypoints=websecure"
|
- "traefik.http.routers.pocket-mainnet.entrypoints=websecure"
|
||||||
# - "traefik.http.routers.pocket-mainnet.tls.certresolver=myresolver"
|
- "traefik.http.routers.pocket-mainnet.tls.certresolver=myresolver"
|
||||||
# - "traefik.http.routers.pocket-mainnet.middlewares=auth"
|
- "traefik.http.routers.pocket-mainnet.middlewares=auth"
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
|
|
||||||
|
|
||||||
@@ -188,6 +188,9 @@ services:
|
|||||||
volumes:
|
volumes:
|
||||||
- ./wireguard/config/wg0.conf:/config/wg0.conf
|
- ./wireguard/config/wg0.conf:/config/wg0.conf
|
||||||
- /lib/modules:/lib/modules
|
- /lib/modules:/lib/modules
|
||||||
|
# Expose prometheus port
|
||||||
|
expose:
|
||||||
|
- 9090
|
||||||
ports:
|
ports:
|
||||||
- $SERVERPORT:$SERVERPORT/udp
|
- $SERVERPORT:$SERVERPORT/udp
|
||||||
sysctls:
|
sysctls:
|
||||||
@@ -211,10 +214,6 @@ services:
|
|||||||
- '--storage.tsdb.retention.time=200h'
|
- '--storage.tsdb.retention.time=200h'
|
||||||
- '--web.enable-lifecycle'
|
- '--web.enable-lifecycle'
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
expose:
|
|
||||||
- 9090
|
|
||||||
networks:
|
|
||||||
- $NET_MONITOR
|
|
||||||
network_mode: "service:wireguard"
|
network_mode: "service:wireguard"
|
||||||
labels:
|
labels:
|
||||||
org.label-schema.group: "monitoring"
|
org.label-schema.group: "monitoring"
|
||||||
@@ -236,8 +235,6 @@ services:
|
|||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
expose:
|
expose:
|
||||||
- 9100
|
- 9100
|
||||||
networks:
|
|
||||||
- $NET_MONITOR
|
|
||||||
labels:
|
labels:
|
||||||
org.label-schema.group: "monitoring"
|
org.label-schema.group: "monitoring"
|
||||||
|
|
||||||
@@ -256,8 +253,6 @@ services:
|
|||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
expose:
|
expose:
|
||||||
- 8080
|
- 8080
|
||||||
networks:
|
|
||||||
- $NET_MONITOR
|
|
||||||
labels:
|
labels:
|
||||||
org.label-schema.group: "monitoring"
|
org.label-schema.group: "monitoring"
|
||||||
|
|
||||||
@@ -267,8 +262,6 @@ services:
|
|||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
expose:
|
expose:
|
||||||
- 9091
|
- 9091
|
||||||
networks:
|
|
||||||
- $NET_MONITOR
|
|
||||||
labels:
|
labels:
|
||||||
org.label-schema.group: "monitoring"
|
org.label-schema.group: "monitoring"
|
||||||
|
|
||||||
@@ -288,7 +281,7 @@ volumes:
|
|||||||
### NETWORKS
|
### NETWORKS
|
||||||
|
|
||||||
networks:
|
networks:
|
||||||
$NET_MONITOR:
|
pocket:
|
||||||
driver: bridge
|
driver: bridge
|
||||||
$NET_POKT:
|
monitor-net:
|
||||||
driver: bridge
|
driver: bridge
|
||||||
|
|||||||
Reference in New Issue
Block a user