API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 13th, 2024
91
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.91 KB | None | 0 0
raw download clone embed print report
  1. global:
  2. checkNewVersion: true
  3. sendAnonymousUsage: false
  4.  
  5. serversTransport:
  6. insecureSkipVerify: true
  7.  
  8. entryPoints:
  9. # Not used in apps, but redirect everything from HTTP to HTTPS
  10. http:
  11. address: :80
  12. forwardedHeaders:
  13. trustedIPs: &trustedIps
  14. # Start of Clouflare public IP list for HTTP requests, remove this if you don't use it
  15. - 172.20.0.35/16
  16. - 172.20.0.0/16
  17. - 173.245.48.0/20
  18. - 103.21.244.0/22
  19. - 103.22.200.0/22
  20. - 103.31.4.0/22
  21. - 141.101.64.0/18
  22. - 108.162.192.0/18
  23. - 190.93.240.0/20
  24. - 188.114.96.0/20
  25. - 197.234.240.0/22
  26. - 198.41.128.0/17
  27. - 162.158.0.0/15
  28. - 104.16.0.0/13
  29. - 104.24.0.0/14
  30. - 172.64.0.0/13
  31. - 131.0.72.0/22
  32. - 2400:cb00::/32
  33. - 2606:4700::/32
  34. - 2803:f800::/32
  35. - 2405:b500::/32
  36. - 2405:8100::/32
  37. - 2a06:98c0::/29
  38. - 2c0f:f248::/32
  39. # End of Cloudlare public IP list
  40. http:
  41. redirections:
  42. entryPoint:
  43. to: https
  44. scheme: https
  45.  
  46. # HTTPS endpoint, with domain wildcard
  47. https:
  48. address: :443
  49. forwardedHeaders:
  50. # Reuse list of Cloudflare Trusted IP's above for HTTPS requests
  51. trustedIPs: *trustedIps
  52. http:
  53. tls:
  54. # Generate a wildcard domain certificate
  55. certResolver: letsencrypt
  56. domains:
  57. - main: xxxx.duckdns.org
  58. sans:
  59. - '*.xxxx.duckdns.org'
  60. middlewares:
  61. - securityHeaders@file
  62. - crowdsec-bouncer@file
  63.  
  64.  
  65. providers:
  66. providersThrottleDuration: 2s
  67.  
  68. # File provider for connecting things that are outside of docker / defining middleware
  69. file:
  70. filename: /etc/traefik/fileConfig.yml
  71. watch: true
  72.  
  73. # Docker provider for connecting all apps that are inside of the docker network
  74. docker:
  75. watch: true
  76. network: urbridge # Add Your Docker Network Name Here
  77. # Default host rule to containername.domain.example
  78. defaultRule: "Host(`{{ lower (trimPrefix `/` .Name )}}.xxxx.duckdns.org`)" # Replace with your domain
  79. #swarmModeRefreshSeconds: 15s #comment out or remove this line if using traefik v3
  80. exposedByDefault: false
  81. endpoint: "tcp://dockersocket:2375" # Uncomment if you are using docker socket proxy
  82.  
  83.  
  84. accessLog:
  85. filePath: "/var/log/crowdsec/traefik.log"
  86. bufferingSize: 50
  87.  
  88. # Enable traefik ui
  89. api:
  90. dashboard: true
  91. insecure: true
  92.  
  93. # Log level INFO|DEBUG|ERROR
  94. log:
  95. level: INFO
  96.  
  97. # Use letsencrypt to generate ssl serficiates
  98. certificatesResolvers:
  99. letsencrypt:
  100. acme:
  101. email: xxxxxx
  102. storage: /etc/traefik/acme.json
  103. dnsChallenge:
  104. provider: duckdns
  105. # Used to make sure the dns challenge is propagated to the rights dns servers
  106. resolvers:
  107. - "1.1.1.1:53"
  108. - "1.0.0.1:53"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!