From 2faed0defe0bd18eff17b6bc55bfe600789f196a Mon Sep 17 00:00:00 2001 From: Gurulandia Date: Sun, 1 Mar 2026 12:24:02 +0200 Subject: [PATCH] Jemmaan --- config/docker/2023/oldyml-files/gl-env.env | 82 +++++++++++++++++++ config/docker/2023/oldyml-files/heimdall.yml | 53 ++++++++++++ .../docker/2023/oldyml-files/librespeed.yml | 74 +++++++++++++++++ config/docker/2023/oldyml-files/ntp.yml | 12 +++ config/docker/2023/oldyml-files/portainer.yml | 52 ++++++++++++ 5 files changed, 273 insertions(+) create mode 100644 config/docker/2023/oldyml-files/gl-env.env create mode 100644 config/docker/2023/oldyml-files/heimdall.yml create mode 100644 config/docker/2023/oldyml-files/librespeed.yml create mode 100644 config/docker/2023/oldyml-files/ntp.yml create mode 100644 config/docker/2023/oldyml-files/portainer.yml diff --git a/config/docker/2023/oldyml-files/gl-env.env b/config/docker/2023/oldyml-files/gl-env.env new file mode 100644 index 0000000..caee2d1 --- /dev/null +++ b/config/docker/2023/oldyml-files/gl-env.env @@ -0,0 +1,82 @@ +##### SYSTEM + +PUID=1001 +PGID=995 +TZ=Europe/HelsinkI +USERDIR=/home/gurulandia +DOCKERDIR=/gurulandia/data/docker +SECRETSDIR=/gurulandia/data/docker/secrets +DOCKER_ENDPOINT=tcp://socket-proxy:2375 + +##### SUBNETS + +PROXY_SUBNET=192.168.91.0/24 +SOCKET_PROXY_SUBNET=192.168.92.0/24 + +##### GATEWAYS + +PROXY_GATEWAY=192.168.91.1 +SOCKET_PROXY_GATEWAY=192.168.92.1 + +##### IP ADDRESSES + +HEIMDALL_IP=192.168.91.2 +VSCODE_IP=192.168.91.3 +YOURLS_IP=192.168.91.4 +LIBRESPEED_IP=192.168.91.5 +ADMINER_IP=192.168.91.6 +DOZZLE_IP0=192.168.91.7 +GLANCES_IP0=192.168.91.8 +CLOUDDNS_IP=192.168.91.9 +CERTDUMPER_IP=192.168.91.10 + +AUTHELIA_IP=192.168.91.252 +PORTAINER_IP0=192.168.91.253 +TRAEFIK_IP0=192.168.91.254 + +DOZZLE_IP1=192.168.92.7 +GLANCES_IP1=192.168.92.8 +TRAEFIK_IP1=192.168.92.252 +PORTAINER_IP1=192.168.92.253 +SOCKET_PROXY_IP=192.168.92.254 + +#SERVER_IP= +#PIHOLE_IP= +#LOCAL_NETWORK= + +##### PORTS + +LIBRESPEED_PORT=30001 + +##### DOMAIN + +DOMAINNAME0=gurulandia.eu +DOMAINNAME1=local.gurulandia.eu + +CLOUDFLARE_EMAIL=gurulandia@outlook.com +CLOUDFLARE_IP_RANGES=173.245.48.0/20,103.21.244.0/22,103.22.200.0/22,103.31.4.0/22,141.101.64.0/18,108.162.192.0/18,190.93.240.0/20,188.114.96.0/20,197.234.240.0/22,198.41.128.0/17,162.158.0.0/15,172.64.0.0/13,131.0.72.0/22,104.16.0.0/13,104.24.0.0/14 + +##### DUCKDNS + +DUCKDNSDOMAIN0=gurulandia.duckdns.org +DUCKDNS_TOKEN=99636f9f-46d7-4d80-b171-6ae486d1bc7b + +##### Certificate + +CERTRESOLVER=dns-cloudflare +DNS_PROVIDER=cloudflare +RESOLVER0=1.1.1.1:53 +RESOLVER1=1.0.0.1:53 + +##### DATABASE + +DB_HOST=192.168.99.60 +DB_PORT=3306 +MYSQL_ROOT_PASSWORD= + +VSCODE_PASSWORD=glvscode + +EMAIL=gurulandia@outlook.com + +GUAC_MYSQL_USER=guacamole +GUAC_MYSQL_PASSWORD=guacamole \ No newline at end of file diff --git a/config/docker/2023/oldyml-files/heimdall.yml b/config/docker/2023/oldyml-files/heimdall.yml new file mode 100644 index 0000000..2bb3435 --- /dev/null +++ b/config/docker/2023/oldyml-files/heimdall.yml @@ -0,0 +1,53 @@ +version: "3.7" +########################### NETWORKS +# There is no need to create any networks outside this docker-compose file. +# You may customize the network subnets (192.168.90.0/24 and 91.0/24) below as you please. +# Docker Compose version 3.5 or higher required to define networks this way. +networks: + gl_proxy: + name: gl_proxy + driver: bridge + ipam: + config: + - subnet: $GL_PROXY_SUBNET + - gateway: $GL_PROXY_GATEWAY + default: + driver: bridge + gl_socket_proxy: + name: gl_socket_proxy + driver: bridge + ipam: + config: + - subnet: $GL_SOCKET_PROXY_SUBNET + - gateway: $GL_SOCKET_PROXY_GATEWAY + +########################### SERVICES +services: + # Heimdall - Unified Frontend Alternative + heimdall: + container_name: gl-heimdall + image: linuxserver/heimdall:latest + restart: unless-stopped + networks: + gl_proxy: + ipv4_address: $HEIMDALL_IP + security_opt: + - no-new-privileges:true + # ports: + # - "$HEIMDALL_PORT:80" + volumes: + - $DOCKERDIR/appdata/heimdall:/config + environment: + - PUID=$PUID + - PGID=$PGID + - TZ=$TZ + labels: + - "traefik.enable=true" + ## HTTP Routers + - "traefik.http.routers.heimdall-rtr.entrypoints=https" + - "traefik.http.routers.heimdall-rtr.rule=Host(`home.$DOMAINNAME0`)" + ## Middlewares + - "traefik.http.routers.heimdall-rtr.middlewares=chain-authelia@file" + ## HTTP Services + - "traefik.http.routers.heimdall-rtr.service=heimdall-svc" + - "traefik.http.services.heimdall-svc.loadbalancer.server.port=80" diff --git a/config/docker/2023/oldyml-files/librespeed.yml b/config/docker/2023/oldyml-files/librespeed.yml new file mode 100644 index 0000000..8877320 --- /dev/null +++ b/config/docker/2023/oldyml-files/librespeed.yml @@ -0,0 +1,74 @@ +version: "3.7" +########################### NETWORKS +# There is no need to create any networks outside this docker-compose file. +# You may customize the network subnets (192.168.90.0/24 and 91.0/24) below as you please. +# Docker Compose version 3.5 or higher required to define networks this way. +networks: + gl_proxy: + name: gl_proxy + driver: bridge + ipam: + config: + - subnet: $GL_PROXY_SUBNET + - gateway: $GL_PROXY_GATEWAY + default: + driver: bridge + gl_socket_proxy: + name: gl_socket_proxy + driver: bridge + ipam: + config: + - subnet: $GL_SOCKET_PROXY_SUBNET + - gateway: $GL_SOCKET_PROXY_GATEWAY + +########################### SECRETS +#secrets: +# htpasswd: +# file: $SECRETSDIR/htpasswd +# authelia_jwt_secret: +# file: $SECRETSDIR/authelia_jwt_secret +# authelia_session_secret: +# file: $SECRETSDIR/authelia_session_secret +# authelia_storage_mysql_password: +# file: $DOCKERDIR/secrets/authelia_storage_mysql_password +# authelia_notifier_smtp_password: +# file: $DOCKERDIR/secrets/authelia_notifier_smtp_password +# authelia_duo_api_secret_key: +# file: $DOCKERDIR/secrets/authelia_duo_api_secret_key +########################### SERVICES +services: + librespeed: + container_name: gl-librespeed + image: linuxserver/librespeed:latest + restart: unless-stopped + networks: + gl_proxy: + ipv4_address: $LIBRESPEED_IP + security_opt: + - no-new-privileges:true + #ports: + # - "$LIBRESPEED_PORT:80" + volumes: + - /$DOCKERDIR/appdata/librespeed:/config + environment: + - PUID=$PUID + - PGID=$PGID + - TZ=$TZ + #- DB_TYPE=mysql + #- DB_HOSTNAME=192.168.99.60 + #- DB_PORT=3306 + #- DB_NAME=GL_LibreSpeed + #- DB_USERNAME=librespeed + #- DB_PASSWORD=librespeed + - PASSWORD=librespeed + - CUSTOM_RESULTS=true + labels: + - "traefik.enable=true" + ## HTTP Routers + - "traefik.http.routers.librespeed-rtr.entrypoints=https" + - "traefik.http.routers.librespeed-rtr.rule=HostHeader(`speedtest.$DOMAINNAME0`)" + ## Middlewares + - "traefik.http.routers.librespeed-rtr.middlewares=chain-authelia@file" + ## HTTP Services + - "traefik.http.routers.librespeed-rtr.service=librespeed-svc" + - "traefik.http.services.librespeed-svc.loadbalancer.server.port=80" \ No newline at end of file diff --git a/config/docker/2023/oldyml-files/ntp.yml b/config/docker/2023/oldyml-files/ntp.yml new file mode 100644 index 0000000..0a1acb6 --- /dev/null +++ b/config/docker/2023/oldyml-files/ntp.yml @@ -0,0 +1,12 @@ +--- +version: "3.1" + +services: + ntp: + image: cturra/ntp:latest + container_name: ntp + environment: + - NTP_SERVERS=time.mikes.fi,time1.mikes.fi,time2.mikes.fi # be sure this is external + restart: unless-stopped + ports: + - "192.168.99.30:123:123/udp" diff --git a/config/docker/2023/oldyml-files/portainer.yml b/config/docker/2023/oldyml-files/portainer.yml new file mode 100644 index 0000000..8cc7b02 --- /dev/null +++ b/config/docker/2023/oldyml-files/portainer.yml @@ -0,0 +1,52 @@ +version: "3.7" +########################### NETWORKS +# There is no need to create any networks outside this docker-compose file. +# You may customize the network subnets (192.168.90.0/24 and 91.0/24) below as you please. +# Docker Compose version 3.5 or higher required to define networks this way. +networks: + gl_proxy: + name: gl_proxy + driver: bridge + ipam: + config: + - subnet: $GL_PROXY_SUBNET + - gateway: $GL_PROXY_GATEWAY + default: + driver: bridge + gl_socket_proxy: + name: gl_socket_proxy + driver: bridge + ipam: + config: + - subnet: $GL_SOCKET_PROXY_SUBNET + - gateway: $GL_SOCKET_PROXY_GATEWAY + +########################### SERVICES +services: + # Portainer - WebUI for Containers + portainer: + container_name: gl-portainer + image: portainer/portainer-ce:latest + restart: unless-stopped + command: -H $DOCKER_ENDPOINT # Use Docker Socket Proxy instead for improved security + networks: + gl_proxy: + ipv4_address: $PORTAINER_IP0 + gl_socket_proxy: + ipv4_address: $PORTAINER_IP1 + security_opt: + - no-new-privileges:true + volumes: + - $DOCKERDIR/appdata/portainer/data:/data # Change to local directory if you want to save/transfer config locally + environment: + - TZ=$TZ + labels: + - "traefik.enable=true" + ## HTTP Routers + - "traefik.http.routers.portainer-rtr.entrypoints=https" + - "traefik.http.routers.portainer-rtr.rule=Host(`portainer.$DOMAINNAME0`)" + ## Middlewares + - "traefik.http.routers.portainer-rtr.middlewares=chain-authelia@file" + ## HTTP Services + - "traefik.http.routers.portainer-rtr.service=portainer-svc" + - "traefik.http.services.portainer-svc.loadbalancer.server.port=9000"