# - - - - - HTTP - - - - - # http: middlewares: # access-device: # ipAllowList: # sourceRange: # - "127.0.0.1/32" # - "::1/128" access-network: ipAllowList: sourceRange: - "10.0.0.0/8" - "172.16.0.0/12" - "192.168.0.0/16" - "fc00::/7" compression: compress: defaultEncoding: gzip minResponseBodyBytes: 256 headers: headers: browserXssFilter: true contentTypeNosniff: true forceSTSHeader: true referrerPolicy: strict-origin-when-cross-origin stsIncludeSubdomains: true stsSeconds: 31536000 routers: default: entryPoints: - http # - https middlewares: - access-device - compression - headers rule: "Host(\`*\`)" service: default # tls: # certResolver: letsencrypt-ecdsa # domains: # - main: "localhost" # sans: # - "127.0.0.1" # - "::1" proxy-api: entryPoints: - http # - https middlewares: - access-device - headers rule: "Host(\`localhost\`) && PathPrefix(\`/api\`)" service: api@internal # tls: # certResolver: letsencrypt-ecdsa # domains: # - main: "localhost" # sans: # - "127.0.0.1" # - "::1" proxy-dashboard: entryPoints: - http # - https middlewares: - access-device - compression - headers rule: "Host(\`localhost\`)" service: dashboard@internal # tls: # certResolver: letsencrypt-ecdsa # domains: # - main: "localhost" # sans: # - "127.0.0.1" # - "::1" services: default: loadBalancer: servers: - url: "http://localhost" # - - - - - TCP - - - - - # #tcp: # middlewares: # access-network: # ipAllowList: # sourceRange: # - "10.0.0.0/8" # - "172.16.0.0/12" # - "192.168.0.0/16" # - "2a02:8109:3115:8d00::/64" # - "fc00::/7" # routers: # example: # entryPoints: # - example-tcp # rule: "HostSNI(\`*\`)" # service: example # services: # example: # loadBalancer: # servers: # - address: "localhost:53" # - - - - - TLS - - - - - # #tls: # stores: # default: # defaultCertificate: # certFile: '/etc/ssl/crt/root.crt' # keyFile: '/etc/ssl/key/root.key' # - - - - - UDP - - - - - # #udp: # routers: # example: # entryPoints: # - example-udp # service: example # services: # example: # loadBalancer: # servers: # - address: "localhost:53"