jsbeckr/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
397cbea7fbbd02229d3d5a82bff0e0f3e98e2b0a
homelab/docs/traefik.md
Jens 736477cf57 init
2026-04-03 10:44:26 +02:00

1.7 KiB
Raw Blame History

Traefik

Purpose: Reverse proxy and TLS termination for all homelab services.

Property Value
Status Running
Image traefik:v3.6
Ports 80:80, 443:443
Created by jens
Restart policy unless-stopped
Compose file ../services/traefik/docker-compose.yml

Configuration

  • HTTP (port 80) → automatically redirects to HTTPS
  • HTTPS (port 443) → TLS termination via Let's Encrypt
  • TLS wildcard certificate for *.home.jens.pub and home.jens.pub
  • Certificate resolver: Let's Encrypt via DNS-01 challenge (Namecheap provider)
  • DNS resolvers used for challenge: 1.1.1.1, 8.8.8.8
  • Docker provider: auto-discovers containers via socket (opt-in with traefik.enable=true)
  • Dashboard: enabled, exposed at traefik.home.jens.pub (secured, no insecure mode)

Environment Variables (sensitive)

Variable Description
NAMECHEAP_API_USER Namecheap account username
NAMECHEAP_API_KEY Namecheap API key for DNS challenge
NAMECHEAP_SOURCE_IP Whitelisted IP for Namecheap API access

Volumes

Volume Mount
/var/run/docker.sock :ro — Docker socket for service discovery
traefik_acme /acme — Let's Encrypt certificate storage

Networks

  • proxy (external)
Reference in New Issue View Git Blame Copy Permalink