initial composes

RPi/Caddy/Caddyfile

@@ -0,0 +1,174 @@
+vault.casademm.de {
+  log {
+    level INFO
+    output file {$LOG_FILE} {
+      roll_size 10MB
+      roll_keep 10
+    }
+  }
+
+
+  # Use the ACME HTTP-01 challenge to get a cert for the configured domain.
+  tls {$EMAIL}
+
+  # This setting may have compatibility issues with some browsers
+  # (e.g., attachment downloading on Firefox). Try disabling this
+  # if you encounter issues.
+  encode zstd gzip
+
+  # Proxy everything Rocket
+  reverse_proxy vaultwarden:80 {
+       # Send the true remote IP to Rocket, so that vaultwarden can put this in the
+       # log, so that fail2ban can ban the correct IP.
+       header_up X-Real-IP {remote_host}
+  }
+  
+  
+  
+}
+
+https://portainer.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy https://portainer:9443 {
+        transport http {
+            tls
+            tls_insecure_skip_verify
+        }
+    }
+}
+
+
+
+https://heimdall.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy https://heimdall:443 {
+        transport http {
+            tls
+            tls_insecure_skip_verify
+        }
+    }
+}
+
+https://fritz.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy https://192.168.178.1 {
+        transport http {
+            tls
+            tls_insecure_skip_verify
+        }
+    }
+}
+
+
+#https://heidrun.casademm.de {
+#    tls {$EMAIL}
+
+#    reverse_proxy https://192.168.178.23 {
+#        transport http {
+#            tls
+#            tls_insecure_skip_verify
+#        }
+#    }
+#}
+
+hole.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy pihole:443 {
+        transport http {
+            tls_insecure_skip_verify
+        }
+    }
+}
+
+mb.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy systems.casademm.de:2333 {
+        transport http {
+            tls_insecure_skip_verify
+        }
+    }
+}
+
+ss.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy systems.casademm.de:8003 {
+        transport http {
+            tls_insecure_skip_verify
+        }
+    }
+}
+
+ftp.casademm.de {
+    
+
+    reverse_proxy systems.casademm.de:8080 {
+        
+    }
+}
+
+next.casademm.de {
+    reverse_proxy https://nextcloud:443 {
+        transport http {
+            tls_insecure_skip_verify
+        }
+    }
+}
+
+wtw.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy http://systems.casademm.de:3630 {
+        
+    }
+}
+https://home.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy https://heimdall:443 {
+        transport http {
+            tls
+            tls_insecure_skip_verify
+        }
+    }
+}
+
+
+hsm.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy http://systems.casademm.de:3001 {
+        
+    }
+}
+
+gitea.casademm.de {
+    tls {$EMAIL}
+
+    reverse_proxy http://systems.casademm.de:3000 {
+        
+    }
+}
+
+
+
+
+act.casademm.de {
+    #tls {$EMAIL}
+
+    encode gzip zstd
+    reverse_proxy actual-server:5006
+}
+
+php.casademm.de {
+    reverse_proxy http://phpmyadmin:80
+}
+
+maria.casademm.de {
+    reverse_proxy mariadb:3306
+}

RPi/Caddy/compose.yaml

@@ -0,0 +1,29 @@
+services:
+  caddy:
+    image: dhi.io/caddy:2-debian13-dev
+    container_name: caddy
+    restart: always
+    ports:
+      - 80:80  # Needed for the ACME HTTP-01 challenge.
+      - 443:443
+      - 443:443/udp # Needed for HTTP/3.
+    volumes:
+      - ./Caddyfile:/etc/caddy/Caddyfile:ro
+      - ./caddy-config:/config
+      - ./caddy-data:/data
+    environment:
+      DOMAIN: "https://vault.casademm.de"  # Your domain.
+      EMAIL: "t.r.martin22699@gmail.com"                 # The email address to use for ACME registration.
+      LOG_FILE: "/data/access.log"
+    networks:
+      - casa-de-martmann
+      - proxy
+      
+networks:
+  casa-de-martmann:
+    name: casa-de-martmann
+    external: true
+    
+  proxy:
+    name: proxy
+    external: true