ingress/traefik: mail ports, persist acme (#58)
- add ports required for upcoming mailserver - make `acme.json` persistent for sanity
This commit is contained in:
wizzdom
GitHub
parent
83e51c361c
commit
8245a1226b
1 changed files with 57 additions and 8 deletions
|
|
@ -1,40 +1,65 @@
|
||||||
job "traefik" {
|
job "traefik" {
|
||||||
datacenters = ["aperture"]
|
datacenters = ["aperture"]
|
||||||
node_pool = "ingress"
|
node_pool = "ingress"
|
||||||
type = "service"
|
type = "service"
|
||||||
|
|
||||||
group "traefik" {
|
group "traefik" {
|
||||||
network {
|
network {
|
||||||
port "http"{
|
port "http" {
|
||||||
static = 80
|
static = 80
|
||||||
}
|
}
|
||||||
port "https" {
|
port "https" {
|
||||||
static = 443
|
static = 443
|
||||||
}
|
}
|
||||||
port "admin"{
|
port "admin" {
|
||||||
static = 8080
|
static = 8080
|
||||||
}
|
}
|
||||||
|
port "smtp" {
|
||||||
|
static = 25
|
||||||
|
}
|
||||||
|
port "submission" {
|
||||||
|
static = 587
|
||||||
|
}
|
||||||
|
port "submissions" {
|
||||||
|
static = 465
|
||||||
|
}
|
||||||
|
port "imap" {
|
||||||
|
static = 143
|
||||||
|
}
|
||||||
|
port "imaps" {
|
||||||
|
static = 993
|
||||||
|
}
|
||||||
|
port "pop3" {
|
||||||
|
static = 110
|
||||||
|
}
|
||||||
|
port "pop3s" {
|
||||||
|
static = 995
|
||||||
|
}
|
||||||
|
port "managesieve" {
|
||||||
|
static = 4190
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
service {
|
service {
|
||||||
name = "traefik-http"
|
name = "traefik-http"
|
||||||
provider = "nomad"
|
provider = "nomad"
|
||||||
port = "https"
|
port = "https"
|
||||||
}
|
}
|
||||||
|
|
||||||
task "traefik" {
|
task "traefik" {
|
||||||
driver = "docker"
|
driver = "docker"
|
||||||
config {
|
config {
|
||||||
image = "traefik"
|
image = "traefik"
|
||||||
network_mode = "host"
|
network_mode = "host"
|
||||||
|
|
||||||
volumes = [
|
volumes = [
|
||||||
"local/traefik.toml:/etc/traefik/traefik.toml",
|
"local/traefik.toml:/etc/traefik/traefik.toml",
|
||||||
|
"/storage/nomad/traefik/acme/acme.json:/acme.json",
|
||||||
]
|
]
|
||||||
}
|
}
|
||||||
|
|
||||||
template {
|
template {
|
||||||
data = <<EOF
|
data = <<EOF
|
||||||
[entryPoints]
|
[entryPoints]
|
||||||
[entryPoints.web]
|
[entryPoints.web]
|
||||||
address = ":80"
|
address = ":80"
|
||||||
|
|
@ -48,6 +73,30 @@ job "traefik" {
|
||||||
[entryPoints.traefik]
|
[entryPoints.traefik]
|
||||||
address = ":8080"
|
address = ":8080"
|
||||||
|
|
||||||
|
[entryPoints.smtp]
|
||||||
|
address = ":25"
|
||||||
|
|
||||||
|
[entryPoints.submission]
|
||||||
|
address = ":587"
|
||||||
|
|
||||||
|
[entryPoints.submissions]
|
||||||
|
address = ":465"
|
||||||
|
|
||||||
|
[entryPoints.imap]
|
||||||
|
address = ":143"
|
||||||
|
|
||||||
|
[entryPoints.imaps]
|
||||||
|
address = ":993"
|
||||||
|
|
||||||
|
[entryPoints.pop3]
|
||||||
|
address = ":110"
|
||||||
|
|
||||||
|
[entryPoints.pop3s]
|
||||||
|
address = ":995"
|
||||||
|
|
||||||
|
[entryPoints.managesieve]
|
||||||
|
address = ":4190"
|
||||||
|
|
||||||
[tls.options]
|
[tls.options]
|
||||||
[tls.options.default]
|
[tls.options.default]
|
||||||
minVersion = "VersionTLS12"
|
minVersion = "VersionTLS12"
|
||||||
|
|
@ -80,7 +129,7 @@ job "traefik" {
|
||||||
|
|
||||||
[certificatesResolvers.lets-encrypt.acme]
|
[certificatesResolvers.lets-encrypt.acme]
|
||||||
email = "elected-admins@redbrick.dcu.ie"
|
email = "elected-admins@redbrick.dcu.ie"
|
||||||
storage = "local/acme.json"
|
storage = "acme.json"
|
||||||
[certificatesResolvers.lets-encrypt.acme.tlsChallenge]
|
[certificatesResolvers.lets-encrypt.acme.tlsChallenge]
|
||||||
EOF
|
EOF
|
||||||
destination = "/local/traefik.toml"
|
destination = "/local/traefik.toml"
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue