theis.gaedigk/ca-lose
3
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 3 Wiki Activity

edited docker compose

Browse Source
This commit is contained in:
Theis Gaedigk
2026-05-09 21:22:28 +02:00
parent 2aa9a968f5
commit b05f19acd9
1 changed files with 9 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docker-compose.yml
+9 -26
View File
@@ -3,11 +3,11 @@ services:
container_name: ca-lose-frontend container_name: ca-lose-frontend
hostname: lose-verkaufen hostname: lose-verkaufen
build: ./frontend build: ./frontend
depends_on:
- backend
networks: networks:
ca-lose-internal: ca-lose-internal:
ipv4_address: 172.25.0.2 ipv4_address: 172.25.0.2
proxynet:
ipv4_address: 172.20.0.61
restart: unless-stopped restart: unless-stopped
backend: backend:
@@ -37,13 +37,11 @@ services:
MYSQL_DATABASE: ca_lose MYSQL_DATABASE: ca_lose
TZ: Europe/Berlin TZ: Europe/Berlin
volumes: volumes:
- ca-lose_mysql:/var/lib/mysql - ../docker/volumes/ca-lose_mysql:/var/lib/mysql
- ./mysql-timezone.cnf:/etc/mysql/conf.d/timezone.cnf:ro - ./mysql-timezone.cnf:/etc/mysql/conf.d/timezone.cnf:ro
networks: networks:
ca-lose-internal: ca-lose-internal:
ipv4_address: 172.25.0.4 ipv4_address: 172.25.0.4
proxynet:
ipv4_address: 172.20.0.60
# DNS Server für Hostname-Auflösung innerhalb des VPN # DNS Server für Hostname-Auflösung innerhalb des VPN
dnsmasq: dnsmasq:
@@ -62,7 +60,7 @@ services:
--address=/wg-admin/172.25.0.10 --address=/wg-admin/172.25.0.10
networks: networks:
ca-lose-internal: ca-lose-internal:
ipv4_address: 172.25.0.53 ipv4_address: 172.25.0.5
# WireGuard VPN mit Web-UI (wg-easy) # WireGuard VPN mit Web-UI (wg-easy)
wireguard: wireguard:
@@ -75,16 +73,10 @@ services:
LANG: de LANG: de
WG_HOST: dus3.the1s.de WG_HOST: dus3.the1s.de
WG_PORT: "51830" WG_PORT: "51830"
PORT: "51821" PORT: "51831"
WG_DEFAULT_ADDRESS: 10.14.14.x volumes:
WG_DEFAULT_DNS: "172.25.0.53" - ../docker/volumes/ca-lose-wireguard:/etc/wireguard
WG_ALLOWED_IPS: 172.25.0.0/24 - /lib/modules:/lib/modules:ro
WG_PERSISTENT_KEEPALIVE: "25"
WG_POST_UP: "iptables -t nat -A POSTROUTING -s 10.14.14.0/24 -o eth0 -j MASQUERADE; iptables -A FORWARD -i wg0 -o eth0 -j ACCEPT; iptables -A FORWARD -i eth0 -o wg0 -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -A FORWARD -i wg0 -d 172.25.0.2 -j ACCEPT; iptables -A FORWARD -i wg0 -d 172.25.0.53 -j ACCEPT; iptables -A FORWARD -i wg0 -j DROP"
WG_POST_DOWN: "iptables -t nat -D POSTROUTING -s 10.14.14.0/24 -o eth0 -j MASQUERADE; iptables -D FORWARD -i wg0 -o eth0 -j ACCEPT; iptables -D FORWARD -i eth0 -o wg0 -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -D FORWARD -i wg0 -d 172.25.0.2 -j ACCEPT; iptables -D FORWARD -i wg0 -d 172.25.0.53 -j ACCEPT; iptables -D FORWARD -i wg0 -j DROP"
volumes:
- wireguard-data:/etc/wireguard
- /lib/modules:/lib/modules:ro
ports: ports:
- "51830:51830/udp" - "51830:51830/udp"
sysctls: sysctls:
@@ -93,16 +85,9 @@ services:
restart: unless-stopped restart: unless-stopped
depends_on: depends_on:
- dnsmasq - dnsmasq
- frontend
networks: networks:
ca-lose-internal: ca-lose-internal:
ipv4_address: 172.25.0.10 ipv4_address: 172.25.0.6
proxynet:
ipv4_address: 172.20.0.50
volumes:
ca-lose_mysql:
wireguard-data:
networks: networks:
ca-lose-internal: ca-lose-internal:
@@ -111,5 +96,3 @@ networks:
config: config:
- subnet: 172.25.0.0/24 - subnet: 172.25.0.0/24
gateway: 172.25.0.1 gateway: 172.25.0.1
proxynet:
external: true