Advertisement
PhoenyxRLP

Untitled

Feb 28th, 2023
4,355
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
YAML 1.44 KB | Source Code | 0 0
  1. version: "2.5"
  2. services:
  3.   crowdsec:
  4.     container_name: crowdsec
  5.     image: crowdsecurity/crowdsec:latest
  6.     environment:
  7.       PGID: "1000"
  8.       COLLECTIONS: "crowdsecurity/traefik crowdsecurity/http-cve crowdsecurity/whitelist-good-actors"
  9.     volumes:
  10.      - /etc/localtime:/etc/localtime:ro
  11.       - /var/run/docker.sock:/var/run/docker.sock:ro
  12.       - ./config:/etc/crowdsec
  13.       - ./data:/var/lib/crowdsec/data
  14.       - /var/log/auth.log:/var/log/auth.log:ro
  15.       - /var/log/crowdsec:/var/log/crowdsec:ro
  16.     restart: unless-stopped
  17.     labels:
  18.      - "com.centurylinklabs.watchtower.enable=true"
  19.     security_opt:
  20.      - no-new-privileges=true
  21.     networks:
  22.       crowdsec:
  23.         ipv4_address: 172.31.0.2
  24.     hostname: crowdsec
  25.  
  26.   bouncer-traefik:
  27.     container_name: crowdsec-bouncer-traefik
  28.     image: fbonalair/traefik-crowdsec-bouncer:latest
  29.     environment:
  30.       CROWDSEC_BOUNCER_API_KEY: ${TRAEFIK_BOUNCER_KEY}
  31.       CROWDSEC_AGENT_HOST: crowdsec:8080 # Hier könnte nun auch bei Bedarf die statische IP 172.31.0.2:8080 verwendet werden
  32.     restart: unless-stopped
  33.     depends_on:
  34.      - crowdsec
  35.     networks:
  36.       crowdsec:
  37.         ipv4_address: 172.31.0.3
  38.     hostname: crowdsec-bouncer-traefik
  39.     labels:
  40.      - "com.centurylinklabs.watchtower.enable=true"
  41.  
  42. networks:
  43.   crowdsec:
  44.     name: crowdsec
  45.     driver: bridge
  46.     ipam:
  47.       config:
  48.       - subnet: 172.31.0.0/24
  49.         gateway: 172.31.0.1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement