-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathdocker-compose-without-traefik.yml
133 lines (127 loc) · 2.95 KB
/
docker-compose-without-traefik.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
version: "3"
networks:
private_network:
ipam:
driver: default
config:
- subnet: 10.2.0.0/24
services:
duckdns:
container_name: duckdns
image: lscr.io/linuxserver/duckdns:version-b14c520a
restart: unless-stopped
depends_on:
- unbound
- pihole
volumes:
- ./config-duckdns:/config
env_file: ./.env
unbound:
image: mvance/unbound-rpi:1.17.1 # Use the image "unbound" if you are not on a Raspberry Pi
container_name: unbound
restart: unless-stopped
hostname: unbound
volumes:
- ./etc-unbound:/opt/unbound/etc/unbound/
networks:
private_network:
ipv4_address: 10.2.0.200
cap_add:
- NET_ADMIN
env_file: ./.env
## Currently not used, I prefer wg-easy
# wireguard:
# container_name: wireguard
# image: linuxserver/wireguard:1.0.20210914
# restart: unless-stopped
# depends_on:
# - unbound
# - pihole
# ports:
# - "5000:5000"
# - "51820:51820/udp"
# volumes:
# - ./config-wireguard:/config
# cap_add:
# - NET_ADMIN
# - SYS_MODULE
# sysctls:
# - net.ipv4.conf.all.src_valid_mark=1
# - net.ipv4.ip_forward=1
# env_file: ./.env
## Currently not used, I prefer wg-easy
# wireguard-ui:
# container_name: wireguard-ui
# image: ngoduykhanh/wireguard-ui:latest
# restart: unless-stopped
# depends_on:
# - wireguard
# volumes:
# - ./db-wireguard-ui:/app/db
# - ./config-wireguard:/config
# cap_add:
# - NET_ADMIN
# network_mode: service:wireguard
# logging:
# driver: json-file
# options:
# max-size: 50m
# env_file: ./.env
pihole:
container_name: pihole
image: pihole/pihole:2024.01.0
restart: unless-stopped
depends_on:
- unbound
networks:
private_network:
ipv4_address: 10.2.0.100
ports:
- "53:53/tcp"
- "192.168.1.200:53:53/udp"
- "80:80/tcp"
volumes:
- ./etc-pihole/:/etc/pihole/
- ./etc-dnsmasq.d/:/etc/dnsmasq.d/
dns:
- 127.0.0.1
- ${PIHOLE_DNS_}
cap_add:
- NET_ADMIN
env_file: ./.env
pialert:
container_name: pialert
image: jokobsk/pi.alert:latest
restart: unless-stopped
depends_on:
- pihole
network_mode: host
expose:
- 20211
volumes:
- ./etc-pihole/:/etc/pihole/
- ./etc-pialert:/home/pi/pialert/config
- ./data-pialert:/home/pi/pialert/db
env_file: ./.env
environment:
- HOST_USER_ID=${PUID}
- HOST_USER_GID=${PGID}
wg-easy:
container_name: wg-easy
image: ghcr.io/wg-easy/wg-easy:10
restart: unless-stopped
networks:
private_network:
ipv4_address: 10.2.0.3
ports:
- "51820:51820/udp"
- "51821:51821/tcp"
volumes:
- "./etc-wireguard:/etc/wireguard"
cap_add:
- NET_ADMIN
- SYS_MODULE
sysctls:
- net.ipv4.conf.all.src_valid_mark=1
- net.ipv4.ip_forward=1
env_file: ./.env