global: checkNewVersion: true sendAnonymousUsage: falseserversTranspor

1. global:
2. checkNewVersion: true
3. sendAnonymousUsage: false
4.  
5. serversTransport:
6. insecureSkipVerify: true
7.  
8. entryPoints:
9. # Not used in apps, but redirect everything from HTTP to HTTPS
10. http:
11. address: :80
12. forwardedHeaders:
13. trustedIPs: &trustedIps
14. # Start of Clouflare public IP list for HTTP requests, remove this if you don't use it
15. - 172.18.0.0/16
16. - 173.245.48.0/20
17. - 103.21.244.0/22
18. - 103.22.200.0/22
19. - 103.31.4.0/22
20. - 141.101.64.0/18
21. - 108.162.192.0/18
22. - 190.93.240.0/20
23. - 188.114.96.0/20
24. - 197.234.240.0/22
25. - 198.41.128.0/17
26. - 162.158.0.0/15
27. - 104.16.0.0/13
28. - 104.24.0.0/14
29. - 172.64.0.0/13
30. - 131.0.72.0/22
31. - 2400:cb00::/32
32. - 2606:4700::/32
33. - 2803:f800::/32
34. - 2405:b500::/32
35. - 2405:8100::/32
36. - 2a06:98c0::/29
37. - 2c0f:f248::/32
38. # End of Cloudlare public IP list
39. http:
40. redirections:
41. entryPoint:
42. to: https
43. scheme: https
44.  
45. # HTTPS endpoint, with domain wildcard
46. https:
47. address: :443
48. forwardedHeaders:
49. # Reuse list of Cloudflare Trusted IP's above for HTTPS requests
50. trustedIPs: *trustedIps
51. http:
52. tls:
53. # Generate a wildcard domain certificate
54. certResolver: letsencrypt
55. domains:
56. - main: domain.com
57. sans:
58. - '*.domain.com'
59. middlewares:
60. #- securityHeaders@file
61. #- my-plugin-simplecache@file
62. - my-crowdsec-bouncer-traefik-plugin@file
63. - my-traefik-real-ip@file
64. - my-plugin-log4shell@file
65. #- my-traefik-themepark@file
66. #- my-geoblock@file
67. providers:
68. providersThrottleDuration: 2s
69.  
70. # File provider for connecting things that are outside of docker / defining middleware
71. file:
72. filename: /etc/traefik/fileConfig.yml
73. watch: true
74.  
75. # Docker provider for connecting all apps that are inside of the docker network
76. docker:
77. watch: true
78. network: john # Add Your Docker Network Name Here
79. # Default host rule to containername.domain.example
80. defaultRule: "Host(`{{ lower (trimPrefix `/` .Name )}}.domain.com`)" # Replace with your domain
81. swarmModeRefreshSeconds: 15s
82. exposedByDefault: false
83. endpoint: "tcp://dockersocket:2375" # Uncomment if you are using docker socket proxy
84.  
85. # Enable traefik ui
86. api:
87. dashboard: true
88. insecure: true
89.  
90. # Log level INFO|DEBUG|ERROR
91. log:
92. level: INFO
93.  
94. # Use letsencrypt to generate ssl serficiates
95. certificatesResolvers:
96. letsencrypt:
97. acme:
98. email: email@email.com
99. storage: /etc/traefik/acme.json
100. dnsChallenge:
101. provider: cloudflare
102. # Used to make sure the dns challenge is propagated to the rights dns servers
103. resolvers:
104. - "1.1.1.1:53"
105. - "1.0.0.1:53"
106. accessLog:
107. filePath: "/var/log/crowdsec/traefik.log"
108. bufferingSize: 50
109. experimental:
110. plugins:
111. crowdsec-bouncer-traefik-plugin:
112. moduleName: "github.com/maxlerebourg/crowdsec-bouncer-traefik-plugin"
113. version: "v1.1.16"
114. traefik-themepark:
115. moduleName: "github.com/packruler/traefik-themepark"
116. version: "v1.3.0"
117. plugin-simplecache:
118. moduleName: "github.com/traefik/plugin-simplecache"
119. version: "v0.2.1"
120. plugin-log4shell:
121. moduleName: "github.com/traefik/plugin-log4shell"
122. version: "v0.1.2"
123. geoblock:
124. moduleName: "github.com/PascalMinder/geoblock"
125. version: "v0.2.7"
126. traefik-real-ip:
127. moduleName: "github.com/soulbalz/traefik-real-ip"
128. version: "v1.0.3"