mirror of
https://github.com/bunkerity/bunkerweb
synced 2026-05-24 09:28:37 +00:00
151 lines
3.8 KiB
YAML
151 lines
3.8 KiB
YAML
version: "3.5"
|
|
|
|
services:
|
|
bw:
|
|
image: bunkerity/bunkerweb:1.6.0-beta
|
|
pull_policy: never
|
|
depends_on:
|
|
- bw-redis
|
|
labels:
|
|
- "bunkerweb.INSTANCE=yes"
|
|
volumes:
|
|
- ./index.html:/var/www/html/index.html
|
|
environment:
|
|
API_WHITELIST_IP: "127.0.0.0/8 10.20.30.0/24 1.0.0.3"
|
|
networks:
|
|
bw-universe:
|
|
bw-services:
|
|
ipv4_address: 1.0.0.254
|
|
|
|
bw-scheduler:
|
|
image: bunkerity/bunkerweb-scheduler:1.6.0-beta
|
|
pull_policy: never
|
|
depends_on:
|
|
- bw
|
|
environment:
|
|
BUNKERWEB_INSTANCES: "bw"
|
|
API_WHITELIST_IP: "127.0.0.0/8 10.20.30.0/24 1.0.0.3"
|
|
HTTP_PORT: "80"
|
|
USE_BUNKERNET: "no"
|
|
SEND_ANONYMOUS_REPORT: "no"
|
|
BLACKLIST_IP_URLS: ""
|
|
LOG_LEVEL: "info"
|
|
SESSIONS_NAME: "test"
|
|
USE_REVERSE_SCAN: "no"
|
|
USE_ANTIBOT: "no"
|
|
USE_GREYLIST: "yes"
|
|
GREYLIST_IP: "0.0.0.0/0"
|
|
WHITELIST_COUNTRY: "AU"
|
|
CUSTOM_LOG_LEVEL: "debug"
|
|
|
|
# ? REDIS settings
|
|
USE_REDIS: "yes"
|
|
REDIS_HOST: "bw-redis"
|
|
REDIS_PORT: "6379"
|
|
REDIS_DATABASE: "0"
|
|
REDIS_SSL: "no"
|
|
REDIS_USERNAME: ""
|
|
REDIS_PASSWORD: ""
|
|
REDIS_SENTINEL_HOSTS: ""
|
|
REDIS_SENTINEL_USERNAME: ""
|
|
REDIS_SENTINEL_PASSWORD: ""
|
|
REDIS_SENTINEL_MASTER: "bw-master"
|
|
CUSTOM_CONF_SERVER_HTTP_ready: |
|
|
location /ready {
|
|
default_type 'text/plain';
|
|
rewrite_by_lua_block {
|
|
ngx.print('ready')
|
|
ngx.flush(true)
|
|
ngx.exit(ngx.HTTP_OK)
|
|
}
|
|
}
|
|
networks:
|
|
- bw-universe
|
|
|
|
bw-redis:
|
|
image: bitnami/redis:8.0
|
|
volumes:
|
|
- ./acl:/acl
|
|
- ./tls:/tls
|
|
environment:
|
|
REDIS_PORT_NUMBER: "6379"
|
|
REDIS_TLS_PORT_NUMBER: "6379"
|
|
REDIS_ACLFILE: "/acl/redis.acl"
|
|
REDIS_TLS_ENABLED: "no"
|
|
REDIS_TLS_CERT_FILE: "/tls/redis.pem"
|
|
REDIS_TLS_KEY_FILE: "/tls/redis.key"
|
|
REDIS_TLS_CA_FILE: "/tls/ca.crt"
|
|
REDIS_TLS_AUTH_CLIENTS: "yes"
|
|
REDIS_REPLICATION_MODE: "master"
|
|
REDIS_MASTER_SET: "bw-master"
|
|
ALLOW_EMPTY_PASSWORD: "yes"
|
|
networks:
|
|
- bw-services
|
|
|
|
bw-redis-slave:
|
|
image: bitnami/redis:8.0
|
|
volumes:
|
|
- ./acl:/acl
|
|
- ./tls:/tls
|
|
environment:
|
|
REDIS_PORT_NUMBER: "6379"
|
|
REDIS_TLS_PORT_NUMBER: "6379"
|
|
REDIS_ACLFILE: "/acl/redis.acl"
|
|
REDIS_TLS_ENABLED: "no"
|
|
REDIS_TLS_CERT_FILE: "/tls/redis.pem"
|
|
REDIS_TLS_KEY_FILE: "/tls/redis.key"
|
|
REDIS_TLS_CA_FILE: "/tls/ca.crt"
|
|
REDIS_TLS_AUTH_CLIENTS: "yes"
|
|
REDIS_REPLICATION_MODE: "slave"
|
|
REDIS_MASTER_HOST: "bw-redis"
|
|
REDIS_MASTER_SET: "bw-master"
|
|
REDIS_MASTER_PORT_NUMBER: "6379"
|
|
REDIS_MASTER_PASSWORD: ""
|
|
ALLOW_EMPTY_PASSWORD: "yes"
|
|
depends_on:
|
|
- bw-redis
|
|
networks:
|
|
- bw-services
|
|
deploy:
|
|
replicas: 2
|
|
|
|
bw-redis-sentinel:
|
|
image: bitnami/redis-sentinel:8.0
|
|
command: /opt/bitnami/scripts/redis-sentinel/run.sh --aclfile /acl/sentinel.acl
|
|
volumes:
|
|
- ./acl:/acl
|
|
- ./tls:/tls
|
|
environment:
|
|
REDIS_SENTINEL_PORT_NUMBER: "26379"
|
|
REDIS_SENTINEL_TLS_PORT_NUMBER: "0"
|
|
REDIS_SENTINEL_TLS_ENABLED: "no"
|
|
REDIS_SENTINEL_TLS_CERT_FILE: "/tls/sentinel.pem"
|
|
REDIS_SENTINEL_TLS_KEY_FILE: "/tls/sentinel.key"
|
|
REDIS_SENTINEL_TLS_CA_FILE: "/tls/sentinel_ca.crt"
|
|
REDIS_SENTINEL_TLS_AUTH_CLIENTS: "no"
|
|
REDIS_MASTER_HOST: "bw-redis"
|
|
REDIS_MASTER_SET: "bw-master"
|
|
REDIS_MASTER_PORT_NUMBER: "6379"
|
|
REDIS_MASTER_PASSWORD: ""
|
|
ALLOW_EMPTY_PASSWORD: "yes"
|
|
depends_on:
|
|
- bw-redis
|
|
- bw-redis-slave
|
|
networks:
|
|
- bw-services
|
|
deploy:
|
|
replicas: 3
|
|
|
|
networks:
|
|
bw-universe:
|
|
name: bw-universe
|
|
ipam:
|
|
driver: default
|
|
config:
|
|
- subnet: 10.20.30.0/24
|
|
bw-services:
|
|
name: bw-services
|
|
ipam:
|
|
driver: default
|
|
config:
|
|
- subnet: 1.0.0.0/24
|