Add network (#6)

Add network

Reviewed-on: #6
Co-authored-by: ryuupendragon <ryuu@ryuu.in>
Co-committed-by: ryuupendragon <ryuu@ryuu.in>
This commit is contained in:
2025-07-08 16:40:16 +05:30
committed by Ryuu Pendragon
parent f076855e32
commit 645561a52b
20 changed files with 150 additions and 59 deletions

View File

@@ -4,4 +4,10 @@ services:
container_name: adminer
ports:
- ${PORT}:8080
networks:
- backend
restart: unless-stopped
networks:
backend:
external: true

View File

@@ -2,9 +2,6 @@ services:
crowdsec:
image: ghcr.io/crowdsecurity/crowdsec:v1.6.9
container_name: crowdsec
networks:
proxy:
ipv4_address: 172.30.0.3
environment:
- BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY}
- GID=${GID}
@@ -14,6 +11,8 @@ services:
- ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/
- ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/
- ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro
networks:
- backend
restart: unless-stopped
healthcheck:
test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"]
@@ -30,9 +29,6 @@ services:
condition: service_healthy
cap_add:
- NET_ADMIN
networks:
proxy:
ipv4_address: 172.30.0.2
environment:
- CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN}
- CROWDSEC_API_KEY=${CROWDSEC_API_KEY}
@@ -46,13 +42,13 @@ services:
- ${HTTP_PORT}:80
- ${HTTPS_PORT}:443
- ${HTTPS_PORT}:443/udp
networks:
- frontend
- backend
restart: unless-stopped
networks:
proxy:
name: proxy
driver: bridge
ipam:
config:
- subnet: 172.30.0.0/16
gateway: 172.30.0.1
frontend:
external: true
backend:
external: true

View File

@@ -2,8 +2,6 @@ services:
crowdsec:
image: ghcr.io/crowdsecurity/crowdsec:v1.6.9
container_name: crowdsec
networks:
- backend
environment:
- BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY}
- GID=${GID}
@@ -13,6 +11,8 @@ services:
- ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/
- ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/
- ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro
networks:
- backend
restart: unless-stopped
healthcheck:
test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"]
@@ -29,9 +29,6 @@ services:
condition: service_healthy
cap_add:
- NET_ADMIN
networks:
- frontend
- backend
environment:
- CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN}
- CROWDSEC_API_KEY=${CROWDSEC_API_KEY}
@@ -45,6 +42,9 @@ services:
- ${HTTP_PORT}:80
- ${HTTPS_PORT}:443
- ${HTTPS_PORT}:443/udp
networks:
- frontend
- backend
restart: unless-stopped
networks:

View File

@@ -4,9 +4,6 @@ services:
container_name: caddy
cap_add:
- NET_ADMIN
networks:
proxy:
ipv4_address: 172.30.0.2
environment:
- CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN}
volumes:
@@ -19,13 +16,10 @@ services:
- ${HTTP_PORT}:80
- ${HTTPS_PORT}:443
- ${HTTPS_PORT}:443/udp
networks:
- frontend
restart: unless-stopped
networks:
proxy:
name: proxy
driver: bridge
ipam:
config:
- subnet: 172.30.0.0/16
gateway: 172.30.0.1
frontend:
external: true

View File

@@ -4,9 +4,6 @@ services:
container_name: caddy
cap_add:
- NET_ADMIN
networks:
proxy:
ipv4_address: 172.30.0.2
environment:
- CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN}
volumes:
@@ -19,13 +16,10 @@ services:
- ${HTTP_PORT}:80
- ${HTTPS_PORT}:443
- ${HTTPS_PORT}:443/udp
networks:
- frontend
restart: unless-stopped
networks:
proxy:
name: proxy
driver: bridge
ipam:
config:
- subnet: 172.30.0.0/16
gateway: 172.30.0.1
frontend:
external: true

View File

@@ -2,9 +2,6 @@ services:
crowdsec:
image: ghcr.io/crowdsecurity/crowdsec:v1.6.9
container_name: crowdsec
networks:
proxy:
ipv4_address: 172.30.0.3
environment:
- BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY}
- GID=${GID}
@@ -14,6 +11,8 @@ services:
- ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/
- ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/
- ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro
networks:
- backend
restart: unless-stopped
healthcheck:
test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"]
@@ -30,9 +29,6 @@ services:
condition: service_healthy
cap_add:
- NET_ADMIN
networks:
proxy:
ipv4_address: 172.30.0.2
environment:
- CROWDSEC_API_KEY=${CROWDSEC_API_KEY}
volumes:
@@ -45,13 +41,13 @@ services:
- ${HTTP_PORT}:80
- ${HTTPS_PORT}:443
- ${HTTPS_PORT}:443/udp
networks:
- frontend
- backend
restart: unless-stopped
networks:
proxy:
name: proxy
driver: bridge
ipam:
config:
- subnet: 172.30.0.0/16
gateway: 172.30.0.1
frontend:
external: true
backend:
external: true

View File

@@ -10,4 +10,10 @@ services:
- /etc/localtime:/etc/localtime:ro
ports:
- ${SERVER_PORT}:3000
networks:
- frontend
restart: unless-stopped
networks:
frontend:
external: true

View File

@@ -13,6 +13,8 @@ services:
- ${APPDATA_PATH}/gitea-mirror/data:/app/data
ports:
- ${PORT}:4321
networks:
- internal
restart: unless-stopped
healthcheck:
test: ["CMD", "wget", "--no-verbose", "--tries=3", "--spider", "http://localhost:4321/api/health"]
@@ -20,3 +22,7 @@ services:
timeout: 10s
retries: 5
start_period: 15s
networks:
internal:
external: true

View File

@@ -12,6 +12,8 @@ services:
- ${APPDATA_PATH}/gitea/db:/var/lib/mysql
ports:
- ${DB_PORT}:3306
networks:
- backend
restart: unless-stopped
healthcheck:
test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"]
@@ -41,4 +43,13 @@ services:
ports:
- ${SERVER_PORT}:3000
- ${SSH_PORT}:22
networks:
- frontend
- backend
restart: unless-stopped
networks:
frontend:
external: true
backend:
external: true

View File

@@ -10,6 +10,8 @@ services:
- ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data
ports:
- ${DB_PORT}:5432
networks:
- backend
restart: unless-stopped
healthcheck:
test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"]
@@ -39,4 +41,13 @@ services:
ports:
- ${SERVER_PORT}:3000
- ${SSH_PORT}:22
networks:
- frontend
- backend
restart: unless-stopped
networks:
frontend:
external: true
backend:
external: true

View File

@@ -8,5 +8,11 @@ services:
volumes:
- ${APPDATA_PATH}/gotify/config:/app/data
ports:
- "${PORT}:80"
- ${PORT}:80
networks:
- frontend
restart: unless-stopped
networks:
frontend:
external: true

View File

@@ -28,6 +28,12 @@ services:
volumes:
- ${APPDATA_PATH}/healthchecks/config:/config
ports:
- "${PORT}:8000"
- "${SMTP_PORT}:2525"
- ${PORT}:8000
- ${SMTP_PORT}:2525
networks:
- frontend
restart: unless-stopped
networks:
frontend:
external: true

View File

@@ -12,6 +12,8 @@ services:
- ${APPDATA_PATH}/opengist/db:/var/lib/mysql
ports:
- ${DB_PORT}:3306
networks:
- backend
restart: unless-stopped
healthcheck:
test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"]
@@ -44,4 +46,13 @@ services:
- ${APPDATA_PATH}/opengist/data:/opengist
ports:
- ${SERVER_PORT}:6157
networks:
- frontend
- backend
restart: unless-stopped
networks:
frontend:
external: true
backend:
external: true

View File

@@ -10,6 +10,8 @@ services:
- ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data
ports:
- ${DB_PORT}:5432
networks:
- backend
restart: unless-stopped
healthcheck:
test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"]
@@ -42,4 +44,13 @@ services:
- ${APPDATA_PATH}/opengist/data:/opengist
ports:
- ${SERVER_PORT}:6157
networks:
- frontend
- backend
restart: unless-stopped
networks:
frontend:
external: true
backend:
external: true

View File

@@ -9,5 +9,11 @@ services:
- ${APPDATA_PATH}/pingvin-share/images:/opt/app/frontend/public/img
- ${DATA_PATH}:/opt/app/backend/data
ports:
- "${PORT}:3000"
- ${PORT}:3000
networks:
- frontend
restart: unless-stopped
networks:
frontend:
external: true

View File

@@ -23,8 +23,14 @@ services:
- ${APPDATA_PATH}/radicale/config:/config:ro
ports:
- ${PORT}:5232
networks:
- frontend
restart: unless-stopped
healthcheck:
test: curl -f http://127.0.0.1:5232 || exit 1
interval: 30s
retries: 3
networks:
frontend:
external: true

View File

@@ -6,12 +6,14 @@ services:
- DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY}
- SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN}
- LANGS=${LANGS}
ports:
- "${PORT}:8080"
volumes:
- ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata
- ${APPDATA_DATA}/stirling-pdf/config:/configs
- ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/
- ${APPDATA_DATA}/stirling-pdf/logs:/logs/
- ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/
ports:
- ${PORT}:8080
networks:
- frontend
restart: unless-stopped

View File

@@ -8,5 +8,11 @@ services:
- ${APPDATA_PATH}/syncyomi/config:/config
- ${APPDATA_PATH}/syncyomi/log:/log
ports:
- "${PORT}:8282"
- ${PORT}:8282
networks:
- frontend
restart: unless-stopped
networks:
frontend:
external: true

View File

@@ -5,5 +5,11 @@ services:
volumes:
- ${APPDATA_PATH}/uptime-kuma/config:/app/data
ports:
- "${PORT}:3001"
- ${PORT}:3001
networks:
- frontend
restart: unless-stopped
networks:
frontend:
external: true

View File

@@ -10,6 +10,8 @@ services:
- ${APPDATA_PATH}/vaultwarden/db:/var/lib/postgresql/data
ports:
- ${DB_PORT}:5432
networks:
- backend
restart: unless-stopped
healthcheck:
test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"]
@@ -38,4 +40,13 @@ services:
- ${APPDATA_PATH}/vaultwarden/data:/data/
ports:
- ${SERVER_PORT}:80
networks:
- frontend
- backend
restart: unless-stopped
networks:
frontend:
external: true
backend:
external: true