Adding some custom reverse proxy services

Adding cert resolver for auto-creating/renewing certs

custom/lan-only.yml

@@ -0,0 +1,7 @@
+http:
+  middlewares:
+    lan-only:
+      ipAllowList:
+        sourceRange: 
+          - "192.168.1.1/24"
+          - "127.0.0.1/24"

custom/omv_conf.yml

@@ -0,0 +1,15 @@
+http:
+  # Router for Open Media Vault
+  routers:
+    omv:
+      entryPoints:
+        - web
+      service: omv
+      rule: Host(`omv.nearfuture`)
+
+  # Add the service for OMV
+  services:
+    omv:
+      loadBalancer:
+        servers:
+          - url: http://avaritia:80

custom/tls.yml

@@ -2,3 +2,13 @@ tls:
   certificates:
     - certFile: /ssl/overseerr.nearfuture.crt
       keyFile: /ssl/overseerr.nearfuture.key
+    - certFile: /ssl/privatebin.nearfuture.crt
+      keyFile: /ssl/privatebin.nearfuture.key
+    - certFile: /ssl/privatebin.nearfuture.industries.crt
+      keyFile: /ssl/privatebin.nearfuture.industries.key
+    - certFile: /ssl/revolt.nearfuture.crt
+      keyFile: /ssl/revolt.nearfuture.key
+        #- certFile: /ssl/matrix.nearfuture.industries.crt
+        #keyFile: /ssl/matrix.nearfuture.industries.key
+        #- certFile: /ssl/synapse.nearfuture.industries.crt
+        #keyFile: /ssl/synapse.nearfuture.industries.key

traefik.yml

@@ -37,7 +37,7 @@ entryPoints:
 #
 # Optional
 #
-#log:
+log:
   # Log level
   #
   # Optional
@@ -154,3 +154,19 @@ providers:
   file:
     directory: /etc/traefik/custom
     watch: true
+
+certificatesResolvers:
+  myresolver:
+    acme:
+      email: "jeff@nearfuture.industries"
+      storage: "acme.json"
+      caServer: https://acme-v02.api.letsencrypt.org/directory
+      #caServer: https://acme-staging-v02.api.letsencrypt.org/directory
+      dnsChallenge:
+        provider: "namecheap"
+        delayBeforeCheck: 60
+        disablePropagationCheck: true
+        resolvers:
+          - "192.168.1.201:53"
+            #- "1.1.1.1:53"
+            #- "8.8.8.8:53"