furyhawk/cloudy
1
0
Fork 0
mirror of https://github.com/furyhawk/cloudy.git synced 2026-05-20 15:11:10 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
cloudy/swarm/traefik/local_services.yml
T

181 lines
4.0 KiB
YAML
Raw Permalink Blame History

http:
serversTransports:
pvetransport:
insecureSkipVerify: true
middlewares:
authentik:
forwardAuth:
address: "http://authentik-server:9000/outpost.goauthentik.io/auth/traefik"
trustForwardHeader: true
authResponseHeaders:
- X-authentik-username
- X-authentik-groups
- X-authentik-email
- X-authentik-name
- X-authentik-uid
- X-authentik-jwt
- X-authentik-meta-jwks
- X-authentik-meta-outpost
- X-authentik-meta-provider
- X-authentik-meta-app
- X-authentik-meta-version
- authorization
routers:
local-traefik-public-https:
entryPoints:
- https
rule: Host(`coco.swarm.local`)
middlewares:
- admin-auth@swarm
tls: {}
service: coco_desktop@file
local-proxmox00:
entryPoints:
- https
rule: Host(`dc00.swarm.local`)
tls: {}
service: proxmox00@file
local-proxmox01:
entryPoints:
- https
rule: Host(`dc01.swarm.local`)
tls: {}
service: proxmox01@file
traefik-public-https:
entryPoints:
- https
rule: Host(`coco.furyhawk.lol`)
middlewares:
- admin-auth@swarm
tls:
certResolver: le
service: coco_desktop@file
proxmox00:
entryPoints:
- https
rule: Host(`dc00.furyhawk.lol`)
middlewares:
- admin-auth@swarm
tls: {}
service: proxmox00@file
proxmox01:
entryPoints:
- https
rule: Host(`dc01.furyhawk.lol`)
middlewares:
- admin-auth@swarm
tls: {}
service: proxmox01@file
opnsense:
entryPoints:
- https
rule: Host(`firewall.furyhawk.lol`)
# middlewares:
# - admin-auth@swarm
tls: {}
service: opnsense@file
services:
coco_desktop:
loadBalancer:
servers:
- url: "http://192.168.50.178:5000"
proxmox00:
loadBalancer:
passHostHeader: true
serversTransport: "pvetransport"
servers:
- url: "https://192.168.50.210:8006"
proxmox01:
loadBalancer:
passHostHeader: true
serversTransport: "pvetransport"
servers:
- url: "https://192.168.50.201:8006"
opnsense:
loadBalancer:
servers:
- url: "http://192.168.50.170"
tcp:
routers:
spice00:
entryPoints:
- spice-socket
rule: HostSNI(`dc00.furyhawk.lol`)
tls:
certResolver: le
service: spice00@file
spice01:
entryPoints:
- spice-socket
rule: HostSNI(`dc01.furyhawk.lol`)
tls:
certResolver: le
service: spice01@file
spice0000-tls:
entryPoints:
- spice00-tls-socket
rule: HostSNI(`dc00.furyhawk.lol`)
tls:
passthrough: true
service: spice0000-tls@file
spice0001-tls:
entryPoints:
- spice00-tls-socket
rule: HostSNI(`dc01.furyhawk.lol`)
tls:
passthrough: true
service: spice0001-tls@file
spice0100-tls:
entryPoints:
- spice01-tls-socket
rule: HostSNI(`dc00.furyhawk.lol`)
tls:
passthrough: true
service: spice0100-tls@file
spice0101-tls:
entryPoints:
- spice01-tls-socket
rule: HostSNI(`dc01.furyhawk.lol`)
tls:
passthrough: true
service: spice0101-tls@file
services:
spice00:
loadBalancer:
servers:
- address: "192.168.50.210:3128"
spice01:
loadBalancer:
servers:
- address: "192.168.50.201:3128"
spice0000-tls:
loadBalancer:
servers:
- address: "192.168.50.210:61000"
spice0001-tls:
loadBalancer:
servers:
- address: "192.168.50.201:61000"
spice0100-tls:
loadBalancer:
servers:
- address: "192.168.50.210:61001"
spice0101-tls:
loadBalancer:
servers:
- address: "192.168.50.201:61001"
Reference in New Issue View Git Blame Copy Permalink