Jafner/Jafner.net
1
0
Fork 0
Code Issues 16 Pull Requests Actions Packages Projects Releases Wiki Activity

Add lan-only middleware to traefik.jafner.chat

Browse Source
This commit is contained in:
Joey Hafner 2023-03-26 11:44:14 -07:00
parent 9ae6e8c160
commit 3bcef70845
3 changed files with 33 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
homelab/jafner-chat/config/traefik/config/middlewares.yaml Normal file
View File

@ -0,0 +1,26 @@
http:
middlewares:
lan-only:
ipWhiteList:
sourceRange:
- "127.0.0.1/32"
- "192.168.1.1/24"
securityheaders:
headers:
customResponseHeaders:
X-Robots-Tag: "none,noarchive,nosnippet,notranslate,noimageindex"
server: ""
sslProxyHeaders:
X-Forwarded-Proto: https
referrerPolicy: "same-origin"
hostsProxyHeaders:
- "X-Forwarded-Host"
customRequestHeaders:
X-Forwarded-Proto: "https"
X-Scheme: https
contentTypeNosniff: true
browserXssFilter: true
forceSTSHeader: true
stsIncludeSubdomains: true
stsSeconds: 63072000
stsPreload: true

4
homelab/jafner-chat/config/traefik/config/tls.yaml Normal file
View File

@ -0,0 +1,4 @@
tls:
options:
tls12:
minVersion: VersionTLS12

2
homelab/jafner-chat/config/traefik/config/traefik_api.yaml
View File

@ -3,6 +3,8 @@ http:
api: api:
rule: "Host(`traefik.jafner.chat`)" rule: "Host(`traefik.jafner.chat`)"
entryPoints: "websecure" entryPoints: "websecure"
middlewares:
- "lan-only@file"
service: "api@internal" service: "api@internal"
tls: tls:
certResolver: "lets-encrypt" certResolver: "lets-encrypt"