API tools faq
paste
Guest User

Untitled

a guest
Jun 17th, 2023
990
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.80 KB | None | 0 0
raw download clone embed print report
  1. global:
  2. checkNewVersion: true
  3. sendAnonymousUsage: false
  4.  
  5. serversTransport:
  6. insecureSkipVerify: true
  7.  
  8. entryPoints:
  9. # Not used in apps, but redirect everything from HTTP to HTTPS
  10. http:
  11. address: :80
  12. forwardedHeaders:
  13. trustedIPs: &trustedIps
  14. # Start of Clouflare public IP list for HTTP requests, remove this if you don't use it
  15. - 172.18.0.0/16
  16. - 173.245.48.0/20
  17. - 103.21.244.0/22
  18. - 103.22.200.0/22
  19. - 103.31.4.0/22
  20. - 141.101.64.0/18
  21. - 108.162.192.0/18
  22. - 190.93.240.0/20
  23. - 188.114.96.0/20
  24. - 197.234.240.0/22
  25. - 198.41.128.0/17
  26. - 162.158.0.0/15
  27. - 104.16.0.0/13
  28. - 104.24.0.0/14
  29. - 172.64.0.0/13
  30. - 131.0.72.0/22
  31. - 2400:cb00::/32
  32. - 2606:4700::/32
  33. - 2803:f800::/32
  34. - 2405:b500::/32
  35. - 2405:8100::/32
  36. - 2a06:98c0::/29
  37. - 2c0f:f248::/32
  38. # End of Cloudlare public IP list
  39. http:
  40. redirections:
  41. entryPoint:
  42. to: https
  43. scheme: https
  44.  
  45. # HTTPS endpoint, with domain wildcard
  46. https:
  47. address: :443
  48. forwardedHeaders:
  49. # Reuse list of Cloudflare Trusted IP's above for HTTPS requests
  50. trustedIPs: *trustedIps
  51. http:
  52. tls:
  53. # Generate a wildcard domain certificate
  54. certResolver: letsencrypt
  55. domains:
  56. - main: domain.com
  57. sans:
  58. - '*.domain.com'
  59. middlewares:
  60. - securityHeaders@file
  61. # - crowdsec-bouncer@file
  62. providers:
  63. providersThrottleDuration: 2s
  64.  
  65. # File provider for connecting things that are outside of docker / defining middleware
  66. file:
  67. filename: /etc/traefik/fileConfig.yml
  68. watch: true
  69.  
  70. # Docker provider for connecting all apps that are inside of the docker network
  71. docker:
  72. watch: true
  73. network: proxy # Add Your Docker Network Name Here
  74. # Default host rule to containername.domain.example
  75. defaultRule: "Host(`{{ lower (trimPrefix `/` .Name )}}.domain.com`)" # Replace with your domain
  76. swarmModeRefreshSeconds: 15s
  77. exposedByDefault: false
  78. endpoint: "tcp://dockersocket:2375" # Uncomment if you are using docker socket proxy
  79.  
  80. # Enable traefik ui
  81. api:
  82. dashboard: true
  83. insecure: true
  84.  
  85. # Log level INFO|DEBUG|ERROR
  86. log:
  87. level: INFO
  88.  
  89. # Use letsencrypt to generate ssl serficiates
  90. certificatesResolvers:
  91. letsencrypt:
  92. acme:
  93. email: [email protected]
  94. storage: /etc/traefik/acme.json
  95. dnsChallenge:
  96. provider: cloudflare
  97. # Used to make sure the dns challenge is propagated to the rights dns servers
  98. resolvers:
  99. - "1.1.1.1:53"
  100. - "1.0.0.1:53"
  101. accessLog:
  102. filePath: "/var/log/crowdsec/traefik.log"
  103. bufferingSize: 50
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!