2020-2023 | Tixo | info@tx0.ru |
Погрузитесь в
с Тиксо!
В корне создаём папку «traefik» и файлы файлы «docker-compose.yml» и «acme.json»
mkdir freeipaдобавляем содержимое в docker-compose.yml cat > freeipa/docker-compose.yml
version: "3"
services:
freeipa:
image: freeipa/freeipa-server:centos-8-stream
hostname: freeipa
domainname: freeipa.(youdomaine)
container_name: freeipa
ports:
- 389:389
- 636:636
- 88:88
- 464:464
- 88:88/udp
- 464:464/udp
- 123:123/udp
dns:
- (you_dns_server)
restart: unless-stopped
tty: true
stdin_open: true
environment:
IPA_SERVER_HOSTNAME: freeipa.(youdomaine)
IPA_SERVER_IP: (you_ip_container)
DNS: (you_dns_server)
TZ: "Europe/Astrakhan"
command:
- -U
- --domain=tx0.ru
- --realm=tx0.ru
- --admin-password=1q@WazSX
- --http-pin=1q@WazSX
- --dirsrv-pin=1q@WazSX
- --ds-password=1q@WazSX
- --no-host-dns
- --no-ntp
- --unattended
cap_add:
- SYS_TIME
- NET_ADMIN
restart: unless-stopped
volumes:
- /etc/localtime:/etc/localtime:ro
- /sys/fs/cgroup:/sys/fs/cgroup:ro
- ./data:/data
sysctls:
- net.ipv6.conf.all.disable_ipv6=0
- net.ipv6.conf.lo.disable_ipv6=0
security_opt:
- "seccomp:unconfined"
labels:
- traefik.enable=true
- traefik.http.middlewares.freeipa_https.redirectscheme.scheme=https
- traefik.http.routers.freeipa.entrypoints=web
- traefik.http.routers.freeipa.middlewares=freeipa_https@docker
- traefik.http.routers.freeipa.rule=Host(`freeipa.(youdomaine)`)
- traefik.http.routers.freeipa_https.entrypoints=websecure
- traefik.http.routers.freeipa_https.rule=Host(`freeipa.(youdomaine)`)
- traefik.http.routers.freeipa_https.tls=true
- traefik.http.services.freeipa.loadbalancer.server.port=80
- traefik.http.routers.freeipa_https.tls.certresolver=le
networks:
default:
ipv4_address: (you_ip_container)
networks:
default:
external:
name: traefik_network 2020-2023 | Tixo | info@tx0.ru |
Погрузитесь в
с Тиксо!
