Tried to use docker ingress to solve x-real-ip on mail daemon but it didn't work for other ports

1 files changed, 58 insertions, 0 deletions

diff --git a/playbooks/roles/nginx_proxy/templates/docker-compose.yml b/playbooks/roles/nginx_proxy/templates/docker-compose.yml
new file mode 100644
index 0000000..33b3243
--- /dev/null
+++ b/playbooks/roles/nginx_proxy/templates/docker-compose.yml
@@ -0,0 +1,58 @@
+---
+
+services:
+  nginx-proxy:
+    image: nginxproxy/nginx-proxy
+    container_name: nginx-proxy
+    ports:
+      # http
+      - "80:80"
+      - "443:443"
+      # smtp
+      - "25:25"
+      - "465:465"
+      - "587:587"
+      # imap
+      - "993:993"
+      # sieve
+      - "4190:4190"
+      # src
+      - "2222:2222"
+    volumes:
+      - /var/run/docker.sock:/tmp/docker.sock:ro
+      - {{ nginx_proxy_base }}/certs:/etc/nginx/certs
+      - {{ nginx_proxy_base }}/toplevel.conf.d:/etc/nginx/toplevel.conf.d
+    environment:
+      - TZ={{ timezone }}
+      - DEPLOYMENT_TIME={{ deployment_time }}
+      - NO_COLOR=1
+      - LOG_JSON=true
+      - TRUST_DOWNSTREAM_PROXY=false
+    networks:
+      - proxy
+    labels:
+      - com.github.jrcs.letsencrypt_nginx_proxy_companion.nginx_proxy
+
+  nginx-acme-companion:
+    image: nginxproxy/acme-companion
+    depends_on:
+      - nginx-proxy
+    volumes:
+      - /var/run/docker.sock:/var/run/docker.sock:ro
+      - acme:/etc/acme.sh
+      - {{ nginx_proxy_base }}/certs:/etc/nginx/certs
+    environment:
+      - TZ={{ timezone }}
+      - DEPLOYMENT_TIME={{ deployment_time }}
+      - DEFAULT_EMAIL={{ certs_email }}
+      - ACME_CHALLENGE=DNS-01
+      - "ACMESH_DNS_API_CONFIG={'DNS_API': 'dns_cf', 'CF_Key': '{{ cloudflare_token }}', 'CF_Email': '{{ cloudflare_email }}'}"
+    networks:
+      - proxy
+
+volumes:
+  acme:
+
+networks:
+  proxy:
+    name: proxy