Paul R Kartchner
8282e13b65
Configuration changes: - Add GeoBlock plugin (PascalMinder v0.2.7) - Configure whitelist mode for US-only access - Apply GeoIP middleware to all public services - Block all non-US countries automatically Security enhancements: - Mealie: US access only - Gogs: US access only - Automatic country detection via geojs.io API - Caching for performance (25 entries) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
47 lines
910 B
YAML
47 lines
910 B
YAML
api:
|
|
dashboard: true
|
|
debug: false
|
|
|
|
experimental:
|
|
plugins:
|
|
bouncer:
|
|
moduleName: github.com/maxlerebourg/crowdsec-bouncer-traefik-plugin
|
|
version: v1.3.3
|
|
geoblock:
|
|
moduleName: github.com/PascalMinder/geoblock
|
|
version: v0.2.7
|
|
|
|
entryPoints:
|
|
http:
|
|
address: ":80"
|
|
https:
|
|
address: ":443"
|
|
|
|
serversTransport:
|
|
insecureSkipVerify: true
|
|
|
|
providers:
|
|
docker:
|
|
endpoint: "unix:///var/run/docker.sock"
|
|
exposedByDefault: false
|
|
network: traefik
|
|
file:
|
|
filename: /config.yml
|
|
watch: true
|
|
|
|
certificatesResolvers:
|
|
letsencrypt:
|
|
acme:
|
|
email: pkartch@gmail.com
|
|
storage: acme.json
|
|
# Uncomment for production (remove caServer line for production)
|
|
# caServer: https://acme-staging-v02.api.letsencrypt.org/directory
|
|
httpChallenge:
|
|
entryPoint: http
|
|
|
|
log:
|
|
level: INFO
|
|
|
|
accessLog:
|
|
filePath: "/var/log/traefik/access.log"
|