Update DNS config to use dedicated Adguard network
This commit is contained in:
@@ -32,15 +32,17 @@ access_control:
|
|||||||
- domain:
|
- domain:
|
||||||
- "*.pukeko.xyz"
|
- "*.pukeko.xyz"
|
||||||
networks:
|
networks:
|
||||||
|
#Docker main subnet
|
||||||
|
- 150.200.0.1/24
|
||||||
|
#Docker subnet A
|
||||||
|
- 150.201.0.1/24
|
||||||
|
#Docker subnet B
|
||||||
|
- 150.202.0.1/24
|
||||||
# Home
|
# Home
|
||||||
- 192.168.0.0/24
|
- 192.168.0.0/24
|
||||||
# traefik_internal
|
|
||||||
- 172.19.0.0/16
|
|
||||||
# Wireguard
|
# Wireguard
|
||||||
- 10.8.0.0/16
|
- 10.8.0.0/16
|
||||||
# Arr, for some reason
|
policy: one_factor
|
||||||
- 192.168.240.0/16
|
|
||||||
policy: bypass
|
|
||||||
# Allow access to container's /api address
|
# Allow access to container's /api address
|
||||||
- domain:
|
- domain:
|
||||||
- "*.pukeko.xyz"
|
- "*.pukeko.xyz"
|
||||||
@@ -160,3 +162,15 @@ identity_providers:
|
|||||||
secret: '8Jx#U^%NXEvD#jc@A35wH!6PT8^DYo7pXftCKe3P%C%*xN9FQn26ec^kTxkuhA*9fZx@7*P65Y*L2Ty#Z*7n*f3#^$R!8TSuQ3THW*t#seL#iE7MatYEowb$GvU!8Y!5'
|
secret: '8Jx#U^%NXEvD#jc@A35wH!6PT8^DYo7pXftCKe3P%C%*xN9FQn26ec^kTxkuhA*9fZx@7*P65Y*L2Ty#Z*7n*f3#^$R!8TSuQ3THW*t#seL#iE7MatYEowb$GvU!8Y!5'
|
||||||
redirect_uris:
|
redirect_uris:
|
||||||
- https://flight.pukeko.xyz/
|
- https://flight.pukeko.xyz/
|
||||||
|
- id: vikunja
|
||||||
|
description: Vikunja
|
||||||
|
secret: 'ryKVwXhfHeAQKJJHwejEpK66pAuTGvY2saZArKTFZPjWVs2fKNHDAwah8TbPP44LGKYPBYJxU5Ua5H4Su87DAY4ktpAz6UfmpB9XnXCPoACtBrwBgykjoC6cUzXJRc7t'
|
||||||
|
redirect_uris:
|
||||||
|
- https://tasks.pukeko.xyz/auth/openid/
|
||||||
|
- https://tasks.pukeko.xyz/auth/openid/authelia
|
||||||
|
- https://tasks.pukeko.xyz/api/oidc/authorization
|
||||||
|
scopes:
|
||||||
|
- openid
|
||||||
|
- email
|
||||||
|
- profile
|
||||||
|
- groups
|
||||||
|
|||||||
@@ -39,6 +39,7 @@ services:
|
|||||||
- network
|
- network
|
||||||
- internal
|
- internal
|
||||||
- arr_network
|
- arr_network
|
||||||
|
- dns_network
|
||||||
- filebrowser_network
|
- filebrowser_network
|
||||||
- gitea_network
|
- gitea_network
|
||||||
- gitea_public_instance_network
|
- gitea_public_instance_network
|
||||||
@@ -115,6 +116,7 @@ services:
|
|||||||
- 'traefik.http.middlewares.authelia-basic.forwardauth.authResponseHeaders=Remote-User, Remote-Groups, Remote-Name, Remote-Email'
|
- 'traefik.http.middlewares.authelia-basic.forwardauth.authResponseHeaders=Remote-User, Remote-Groups, Remote-Name, Remote-Email'
|
||||||
networks:
|
networks:
|
||||||
- internal
|
- internal
|
||||||
|
- dns_network
|
||||||
expose:
|
expose:
|
||||||
- 9091
|
- 9091
|
||||||
secrets:
|
secrets:
|
||||||
@@ -129,6 +131,8 @@ networks:
|
|||||||
driver: bridge
|
driver: bridge
|
||||||
arr_network:
|
arr_network:
|
||||||
external: true
|
external: true
|
||||||
|
dns_network:
|
||||||
|
external: true
|
||||||
filebrowser_network:
|
filebrowser_network:
|
||||||
external: true
|
external: true
|
||||||
freshrss_network:
|
freshrss_network:
|
||||||
|
|||||||
Reference in New Issue
Block a user