mirror of
https://github.com/bunkerity/bunkerized-nginx
synced 2023-12-13 21:30:18 +01:00
72 lines
1.6 KiB
YAML
72 lines
1.6 KiB
YAML
version: "3"
|
|
|
|
services:
|
|
myonion:
|
|
image: goldy/tor-hidden-service:0.4.6.9
|
|
volumes:
|
|
- ./hidden-services:/var/lib/tor/hidden_service # .onion address and private key will be located in ./hidden_service
|
|
environment:
|
|
- SERVICE1_TOR_SERVICE_HOSTS=80:mybunker:8080
|
|
- SERVICE1_TOR_SERVICE_VERSION=3
|
|
networks:
|
|
- bw-universe
|
|
|
|
mybunker:
|
|
image: bunkerity/bunkerweb:1.5.0-beta
|
|
environment:
|
|
- API_WHITELIST_IP=127.0.0.0/8 10.20.30.0/24
|
|
# disable common security measures based on IP
|
|
- USE_BAD_BEHAVIOR=no
|
|
- USE_DNSBL=no
|
|
- USE_WHITELIST=no
|
|
- USE_BLACKLIST=no
|
|
# enable captcha at least
|
|
- USE_ANTIBOT=captcha
|
|
- USE_CLIENT_CACHE=yes
|
|
- USE_GZIP=yes
|
|
- USE_REVERSE_PROXY=yes
|
|
- REVERSE_PROXY_URL=/
|
|
- REVERSE_PROXY_HOST=http://myapp
|
|
labels:
|
|
- "bunkerweb.INSTANCE" # required for the scheduler to recognize the container
|
|
networks:
|
|
- bw-universe
|
|
- bw-services
|
|
|
|
bw-scheduler:
|
|
image: bunkerity/bunkerweb-scheduler:1.5.0-beta
|
|
depends_on:
|
|
- mybunker
|
|
environment:
|
|
- DOCKER_HOST=tcp://bw-docker-proxy:2375
|
|
volumes:
|
|
- bw-data:/data
|
|
networks:
|
|
- bw-universe
|
|
- bw-docker
|
|
|
|
bw-docker-proxy:
|
|
image: tecnativa/docker-socket-proxy:0.1
|
|
volumes:
|
|
- /var/run/docker.sock:/var/run/docker.sock:ro
|
|
environment:
|
|
- CONTAINERS=1
|
|
networks:
|
|
- bw-docker
|
|
|
|
myapp:
|
|
image: tutum/hello-world
|
|
networks:
|
|
- bw-services
|
|
|
|
volumes:
|
|
bw-data:
|
|
|
|
networks:
|
|
bw-universe:
|
|
ipam:
|
|
driver: default
|
|
config:
|
|
- subnet: 10.20.30.0/24
|
|
bw-services:
|
|
bw-docker:
|