From 92332782472ffa9a584eaa2211b146c670616158 Mon Sep 17 00:00:00 2001 From: adrien Date: Mon, 30 Jun 2025 21:36:09 +0000 Subject: [PATCH] Removed useless quote and fix some indent --- apps.yml | 107 ++++++++++++--------------- developer.yml | 10 +-- docker-compose.yml | 178 ++++++++++++++++++++++----------------------- llm.yml | 12 +-- monitoring.yml | 48 ++++++------ vms.yml | 20 ++--- 6 files changed, 181 insertions(+), 194 deletions(-) diff --git a/apps.yml b/apps.yml index 79f5dcb..9e973e0 100644 --- a/apps.yml +++ b/apps.yml @@ -1,17 +1,4 @@ services: - #memos: - # image: neosmemo/memos:stable - # container_name: memos - # restart: unless-stopped - # volumes: - # - "./hdd0/memos:/var/opt/memos" - # labels: - # - "traefik.enable=true" - # - "traefik.http.routers.memos.rule=Host(`notes.bouvais.lu`)" - # - "traefik.http.routers.memos.entrypoints=websecure" - # - "traefik.http.routers.memos.tls.certresolver=myresolver" - # - "traefik.http.services.memos.loadbalancer.server.port=5230" - jellyfin: image: jellyfin/jellyfin container_name: jellyfin @@ -20,17 +7,17 @@ services: - '107' #render - '44' #video volumes: - - "./cache/jellyfin/cache:/cache" - - "./hdd0/jellyfin/config:/config" + - ./cache/jellyfin/cache:/cache + - ./hdd0/jellyfin/config:/config - type: bind source: ./hdd0/media target: /media labels: - - "traefik.enable=true" - - "traefik.http.routers.jellyfin.rule=Host(`jellyfin.bouvais.lu`)" - - "traefik.http.routers.jellyfin.entrypoints=websecure" - - "traefik.http.routers.jellyfin.tls.certresolver=myresolver" - - "traefik.http.services.jellyfin.loadbalancer.server.port=8096" + - traefik.enable=true + - traefik.http.routers.jellyfin.rule=Host(`jellyfin.bouvais.lu`) + - traefik.http.routers.jellyfin.entrypoints=websecure + - traefik.http.routers.jellyfin.tls.certresolver=myresolver + - traefik.http.services.jellyfin.loadbalancer.server.port=8096 filebrowser: image: filebrowser/filebrowser:latest @@ -40,52 +27,52 @@ services: TZ: Europe/Luxembourg FB_BASEURL: / volumes: - - "./config/filebrowser/filebrowser.json:/.filebrowser.json" - - "./hdd0/filebrowser/filebrowser.db:/database.db" - - "./hdd0/my_files:/srv" + - ./config/filebrowser/filebrowser.json:/.filebrowser.json + - ./hdd0/filebrowser/filebrowser.db:/database.db + - ./hdd0/my_files:/srv labels: - - "traefik.enable=true" - - "traefik.http.routers.filebrowser.rule=Host(`files.bouvais.lu`)" - - "traefik.http.routers.filebrowser.entrypoints=websecure" - - "traefik.http.routers.filebrowser.tls.certresolver=myresolver" - - "traefik.http.services.filebrowser.loadbalancer.server.port=80" + - traefik.enable=true + - traefik.http.routers.filebrowser.rule=Host(`files.bouvais.lu`) + - traefik.http.routers.filebrowser.entrypoints=websecure + - traefik.http.routers.filebrowser.tls.certresolver=myresolver + - traefik.http.services.filebrowser.loadbalancer.server.port=80 actualbudget: image: actualbudget/actual-server:latest container_name: actualbudget restart: unless-stopped volumes: - - "./hdd0/actualbudget:/data" + - ./hdd0/actualbudget:/data environment: - TZ=Europe/Luxembourg labels: - - "traefik.enable=true" - - "traefik.http.routers.actualbudget.rule=Host(`budget.bouvais.lu`)" - - "traefik.http.routers.actualbudget.entrypoints=websecure" - - "traefik.http.routers.actualbudget.tls.certresolver=myresolver" - - "traefik.http.services.actualbudget.loadbalancer.server.port=5006" + - traefik.enable=true + - traefik.http.routers.actualbudget.rule=Host(`budget.bouvais.lu`) + - traefik.http.routers.actualbudget.entrypoints=websecure + - traefik.http.routers.actualbudget.tls.certresolver=myresolver + - traefik.http.services.actualbudget.loadbalancer.server.port=5006 vaultwarden: image: vaultwarden/server:1.33.2 container_name: vaultwarden restart: unless-stopped environment: - DOMAIN: "https://vault.bouvais.lu" + DOMAIN: https://vault.bouvais.lu SIGNUPS_ALLOWED: false volumes: - - "./hdd0/vaultwarden:/data/" + - ./hdd0/vaultwarden:/data/ labels: - - "traefik.enable=true" - - "traefik.http.services.my-vaultwarden-service.loadbalancer.server.port=80" - - "traefik.http.routers.vaultwarden.rule=Host(`vault.bouvais.lu`)" - - "traefik.http.routers.vaultwarden.entrypoints=websecure" - - "traefik.http.routers.vaultwarden.tls.certresolver=myresolver" - - "traefik.http.routers.vaultwarden.service=my-vaultwarden-service@docker" - - "traefik.http.routers.vaultwarden-admin.rule=Host(`vault.bouvais.lu`) && PathPrefix(`/admin`)" - - "traefik.http.routers.vaultwarden-admin.entrypoints=websecure" - - "traefik.http.routers.vaultwarden-admin.tls.certresolver=myresolver" - - "traefik.http.routers.vaultwarden-admin.middlewares=auth@docker" - - "traefik.http.routers.vaultwarden-admin.service=my-vaultwarden-service@docker" + - traefik.enable=true + - traefik.http.services.my-vaultwarden-service.loadbalancer.server.port=80 + - traefik.http.routers.vaultwarden.rule=Host(`vault.bouvais.lu`) + - traefik.http.routers.vaultwarden.entrypoints=websecure + - traefik.http.routers.vaultwarden.tls.certresolver=myresolver + - traefik.http.routers.vaultwarden.service=my-vaultwarden-service@docker + - traefik.http.routers.vaultwarden-admin.rule=Host(`vault.bouvais.lu`) && PathPrefix(`/admin`) + - traefik.http.routers.vaultwarden-admin.entrypoints=websecure + - traefik.http.routers.vaultwarden-admin.tls.certresolver=myresolver + - traefik.http.routers.vaultwarden-admin.middlewares=auth@docker + - traefik.http.routers.vaultwarden-admin.service=my-vaultwarden-service@docker siyuan: image: b3log/siyuan @@ -93,17 +80,17 @@ services: command: ['--workspace=/siyuan/workspace/'] volumes: - /siyuan/workspace:/siyuan/workspace - - "./hdd0/siyuan/workspace:/siyuan/workspace" + - ./hdd0/siyuan/workspace:/siyuan/workspace restart: unless-stopped environment: - TZ=Europe/Luxembourg - SIYUAN_ACCESS_AUTH_CODE=${SIYUAN_ACCESS_AUTH_CODE} labels: - - "traefik.enable=true" - - "traefik.http.routers.siyuan.rule=Host(`notes.bouvais.lu`)" - - "traefik.http.routers.siyuan.entrypoints=websecure" - - "traefik.http.routers.siyuan.tls.certresolver=myresolver" - - "traefik.http.services.siyuan.loadbalancer.server.port=6806" + - traefik.enable=true + - traefik.http.routers.siyuan.rule=Host(`notes.bouvais.lu`) + - traefik.http.routers.siyuan.entrypoints=websecure + - traefik.http.routers.siyuan.tls.certresolver=myresolver + - traefik.http.services.siyuan.loadbalancer.server.port=6806 libreoffice: image: lscr.io/linuxserver/libreoffice:latest @@ -115,14 +102,14 @@ services: - PASSWORD=${MASTER_PASSWORD} - TZ=Europe/Luxembourg ports: - - "3000:3000" - - "3001:3001" + - 3000:3000 + - 3001:3001 volumes: - ./hdd0/libreoffice:/config restart: unless-stopped labels: - - "traefik.enable=true" - - "traefik.http.routers.libreoffice.rule=Host(`libreoffice.bouvais.lu`)" - - "traefik.http.routers.libreoffice.entrypoints=websecure" - - "traefik.http.routers.libreoffice.tls.certresolver=myresolver" - - "traefik.http.services.libreoffice.loadbalancer.server.port=3000" + - traefik.enable=true + - traefik.http.routers.libreoffice.rule=Host(`libreoffice.bouvais.lu`) + - traefik.http.routers.libreoffice.entrypoints=websecure + - traefik.http.routers.libreoffice.tls.certresolver=myresolver + - traefik.http.services.libreoffice.loadbalancer.server.port=3000 diff --git a/developer.yml b/developer.yml index 4159054..cc72fd0 100644 --- a/developer.yml +++ b/developer.yml @@ -1,15 +1,15 @@ services: gitea: - image: "docker.gitea.com/gitea:1.23.8" + image: docker.gitea.com/gitea:1.23.8 container_name: gitea restart: unless-stopped environment: - GITEA_CUSTOM=/etc/gitea volumes: - - "./hdd0/gitea:/data" - - "./config/gitea:/etc/gitea" - - "/etc/timezone:/etc/timezone:ro" - - "/etc/localtime:/etc/localtime:ro" + - ./hdd0/gitea:/data + - ./config/gitea:/etc/gitea + - /etc/timezone:/etc/timezone:ro + - /etc/localtime:/etc/localtime:ro labels: - traefik.enable=true # HTTP/S diff --git a/docker-compose.yml b/docker-compose.yml index 4b735f6..ddc3c1f 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -7,29 +7,29 @@ include: services: traefik: - image: "traefik:v3.4" - container_name: "traefik" + image: traefik:v3.4 + container_name: traefik restart: unless-stopped command: # HTTPS TSL stuff - - "--providers.docker=true" - - "--providers.docker.exposedbydefault=false" - - "--entryPoints.websecure.address=:443" - - "--certificatesresolvers.myresolver.acme.tlschallenge=true" - - "--certificatesresolvers.myresolver.acme.email=adrien.bouvais.pro@gmail.com" - - "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json" # Relative path on SSD + - --providers.docker=true + - --providers.docker.exposedbydefault=false + - --entryPoints.websecure.address=:443 + - --certificatesresolvers.myresolver.acme.tlschallenge=true + - --certificatesresolvers.myresolver.acme.email=adrien.bouvais.pro@gmail.com + - --certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json # Enable Traefik API and Dashboard (securely) - - "--api.dashboard=true" - - "--metrics.prometheus=true" - - "--metrics.prometheus.buckets=0.1,0.3,1.2,5.0" - - "--entryPoints.ssh.address=:2101" - - "--entrypoints.web.transport.respondingTimeouts.readTimeout=180m" - - "--entrypoints.websecure.transport.respondingTimeouts.readTimeout=180m" + - --api.dashboard=true + - --metrics.prometheus=true + - --metrics.prometheus.buckets=0.1,0.3,1.2,5.0 + - --entryPoints.ssh.address=:2101 + - --entrypoints.web.transport.respondingTimeouts.readTimeout=180m + - --entrypoints.websecure.transport.respondingTimeouts.readTimeout=180m # Logs - Traefik will write its logs to /logs within the container, which maps to /data/logs on host - - "--accesslog=true" - - "--accesslog.format=json" - - "--accesslog.filepath=/logs/access.log" - - "--accesslog.bufferingSize=0" + - --accesslog=true + - --accesslog.format=json + - --accesslog.filepath=/logs/access.log + - --accesslog.bufferingSize=0 ports: - target: 443 published: 443 @@ -40,30 +40,30 @@ services: protocol: tcp mode: host volumes: - - "./letsencrypt:/letsencrypt" - - "/var/run/docker.sock:/var/run/docker.sock:ro" - - "./config/users.cred:/users.cred" - - "./hdd0/logs:/logs" + - ./letsencrypt:/letsencrypt + - /var/run/docker.sock:/var/run/docker.sock:ro + - ./config/users.cred:/users.cred + - ./hdd0/logs:/logs labels: - - "traefik.enable=true" + - traefik.enable=true" # Dashboard Router - - "traefik.http.routers.dashboard.rule=Host(`traefik.bouvais.lu`)" - - "traefik.http.routers.dashboard.entrypoints=websecure" - - "traefik.http.routers.dashboard.service=api@internal" - - "traefik.http.routers.dashboard.middlewares=auth@docker" - - "traefik.http.routers.dashboard.tls.certresolver=myresolver" + - traefik.http.routers.dashboard.rule=Host(`traefik.bouvais.lu`) + - traefik.http.routers.dashboard.entrypoints=websecure + - traefik.http.routers.dashboard.service=api@internal + - traefik.http.routers.dashboard.middlewares=auth@docker + - traefik.http.routers.dashboard.tls.certresolver=myresolver # Traefik Middleware - - "traefik.http.middlewares.auth.basicauth.usersfile=/users.cred" - - "traefik.http.middlewares.ratelimit.ratelimit.average=20" - - "traefik.http.middlewares.ratelimit.ratelimit.burst=40" + - traefik.http.middlewares.auth.basicauth.usersfile=/users.cred + - traefik.http.middlewares.ratelimit.ratelimit.average=20 + - traefik.http.middlewares.ratelimit.ratelimit.burst=40 # bouvais.lu redirection - - "traefik.http.routers.bouvais-redirect.rule=Host(`bouvais.lu`)" - - "traefik.http.routers.bouvais-redirect.entrypoints=websecure" - - "traefik.http.routers.bouvais-redirect.middlewares=redirect-to-gitea@docker" - - "traefik.http.routers.bouvais-redirect.tls.certresolver=myresolver" - - "traefik.http.middlewares.redirect-to-gitea.redirectregex.regex=^https?://(www\\.)?bouvais\\.lu(.*)" - - "traefik.http.middlewares.redirect-to-gitea.redirectregex.replacement=https://git.bouvais.lu$${2}" - - "traefik.http.middlewares.redirect-to-gitea.redirectregex.permanent=true" + - traefik.http.routers.bouvais-redirect.rule=Host(`bouvais.lu`) + - traefik.http.routers.bouvais-redirect.entrypoints=websecure + - traefik.http.routers.bouvais-redirect.middlewares=redirect-to-gitea@docker + - traefik.http.routers.bouvais-redirect.tls.certresolver=myresolver + - traefik.http.middlewares.redirect-to-gitea.redirectregex.regex=^https?://(www\\.)?bouvais\\.lu(.*) + - traefik.http.middlewares.redirect-to-gitea.redirectregex.replacement=https://git.bouvais.lu$${2} + - traefik.http.middlewares.redirect-to-gitea.redirectregex.permanent=true fail2ban: image: crazymax/fail2ban:1.1.0 @@ -74,11 +74,11 @@ services: - NET_RAW network_mode: host volumes: - - "./hdd0/fail2ban/data:/data" - - "./hdd0/fail2ban/log:/var/log" - - "./hdd0/logs:/logs:ro" - - "/etc/localtime:/etc/localtime:ro" - - "/etc/timezone:/etc/timezone:ro" + - ./hdd0/fail2ban/data:/data + - ./hdd0/fail2ban/log:/var/log + - ./hdd0/logs:/logs:ro + - /etc/localtime:/etc/localtime:ro + - /etc/timezone:/etc/timezone:ro environment: - F2B_IPTABLES_CHAIN=DOCKER-USER @@ -87,55 +87,55 @@ services: container_name: kopia restart: unless-stopped command: - - server - - start - - --insecure - - --address=0.0.0.0:51515 - - --server-username=adrien - - --server-password=${MASTER_PASSWORD} + - server + - start + - --insecure + - --address=0.0.0.0:51515 + - --server-username=adrien + - --server-password=${MASTER_PASSWORD} environment: - KOPIA_PASSWORD: ${MASTER_PASSWORD} - USER: "adrien" + - KOPIA_PASSWORD=${MASTER_PASSWORD} + - USER=adrien volumes: - - ./config/kopia:/app/config - - ./cache/kopia:/app/cache - - ./hdd0/logs/:/app/logs - - ./hdd0:/hdd0 - - ./hdd0_backups/kopia/dir:/repository - - ./hdd0_backups/kopia/shared:/tmp:shared + - ./config/kopia:/app/config + - ./cache/kopia:/app/cache + - ./hdd0/logs/:/app/logs + - ./hdd0:/hdd0 + - ./hdd0_backups/kopia/dir:/repository + - ./hdd0_backups/kopia/shared:/tmp:shared labels: - - "traefik.enable=true" - - "traefik.http.routers.kopia.rule=Host(`kopia.bouvais.lu`)" - - "traefik.http.routers.kopia.entrypoints=websecure" - - "traefik.http.routers.kopia.tls.certresolver=myresolver" - - "traefik.http.services.kopia.loadbalancer.server.port=51515" + - traefik.enable=true + - traefik.http.routers.kopia.rule=Host(`kopia.bouvais.lu`) + - traefik.http.routers.kopia.entrypoints=websecure + - traefik.http.routers.kopia.tls.certresolver=myresolver + - traefik.http.services.kopia.loadbalancer.server.port=51515 kopia-gcp: image: kopia/kopia:latest container_name: kopia-gcp restart: unless-stopped command: - - server - - start - - --insecure - - --address=0.0.0.0:51516 - - --server-username=adrien - - --server-password=${MASTER_PASSWORD} + - server + - start + - --insecure + - --address=0.0.0.0:51516 + - --server-username=adrien + - --server-password=${MASTER_PASSWORD} environment: KOPIA_PASSWORD: ${MASTER_PASSWORD} USER: "adrien" volumes: - - ./config/kopia-gcp:/app/config - - ./cache/kopia-gcp:/app/cache - - ./hdd0/logs/gcp:/app/logs - - ./hdd0:/hdd0 - - ./kopia-gcp-key.json:/cred.json + - ./config/kopia-gcp:/app/config + - ./cache/kopia-gcp:/app/cache + - ./hdd0/logs/gcp:/app/logs + - ./hdd0:/hdd0 + - ./kopia-gcp-key.json:/cred.json labels: - - "traefik.enable=true" - - "traefik.http.routers.kopia_gcp.rule=Host(`kopia-gcp.bouvais.lu`)" - - "traefik.http.routers.kopia_gcp.entrypoints=websecure" - - "traefik.http.routers.kopia_gcp.tls.certresolver=myresolver" - - "traefik.http.services.kopia_gcp.loadbalancer.server.port=51516" + - traefik.enable=true + - traefik.http.routers.kopia_gcp.rule=Host(`kopia-gcp.bouvais.lu`) + - traefik.http.routers.kopia_gcp.entrypoints=websecure + - traefik.http.routers.kopia_gcp.tls.certresolver=myresolver + - traefik.http.services.kopia_gcp.loadbalancer.server.port=51516 minio: image: minio/minio:latest @@ -148,17 +148,17 @@ services: volumes: - ./hdd0/minio_data:/data labels: - - "traefik.enable=true" + - traefik.enable=true" # Router and service for the MinIO API - - "traefik.http.routers.minio-api.rule=Host(`minio-api.bouvais.lu`)" - - "traefik.http.routers.minio-api.entrypoints=websecure" - - "traefik.http.routers.minio-api.tls.certresolver=myresolver" - - "traefik.http.services.minio-api-service.loadbalancer.server.port=9000" - - "traefik.http.routers.minio-api.service=minio-api-service" + - traefik.http.routers.minio-api.rule=Host(`minio-api.bouvais.lu`) + - traefik.http.routers.minio-api.entrypoints=websecure + - traefik.http.routers.minio-api.tls.certresolver=myresolver + - traefik.http.services.minio-api-service.loadbalancer.server.port=9000 + - traefik.http.routers.minio-api.service=minio-api-service # Router and service for the MinIO Console (WebUI) - - "traefik.http.routers.minio-console.rule=Host(`minio-console.bouvais.lu`)" - - "traefik.http.routers.minio-console.entrypoints=websecure" - - "traefik.http.routers.minio-console.tls.certresolver=myresolver" - - "traefik.http.services.minio-console-service.loadbalancer.server.port=9001" - - "traefik.http.routers.minio-console.service=minio-console-service" + - traefik.http.routers.minio-console.rule=Host(`minio-console.bouvais.lu`) + - traefik.http.routers.minio-console.entrypoints=websecure + - traefik.http.routers.minio-console.tls.certresolver=myresolver + - traefik.http.services.minio-console-service.loadbalancer.server.port=9001 + - traefik.http.routers.minio-console.service=minio-console-service diff --git a/llm.yml b/llm.yml index 8ed18a4..689b2e2 100644 --- a/llm.yml +++ b/llm.yml @@ -6,11 +6,11 @@ services: volumes: - ./hdd0/openwebui:/app/backend/data labels: - - "traefik.enable=true" - - "traefik.http.routers.openwebui.rule=Host(`openwebui.bouvais.lu`)" - - "traefik.http.routers.openwebui.entrypoints=websecure" - - "traefik.http.routers.openwebui.tls.certresolver=myresolver" - - "traefik.http.services.openwebui.loadbalancer.server.port=8080" + - traefik.enable=true + - traefik.http.routers.openwebui.rule=Host(`openwebui.bouvais.lu`) + - traefik.http.routers.openwebui.entrypoints=websecure + - traefik.http.routers.openwebui.tls.certresolver=myresolver + - traefik.http.services.openwebui.loadbalancer.server.port=8080 environment: OLLAMA_BASE_URLS: http://ollama:11434 @@ -32,6 +32,6 @@ services: container_name: openwebui-pipelines restart: unless-stopped ports: - - "9099:9099" + - 9099:9099 volumes: - ./hdd0/openwebui-pipelines:/app/pipelines diff --git a/monitoring.yml b/monitoring.yml index fc6da38..255df2b 100644 --- a/monitoring.yml +++ b/monitoring.yml @@ -9,19 +9,19 @@ services: - ./config/prometheus:/etc/prometheus - ./hdd0/prometheus:/prometheus command: - - '--config.file=/etc/prometheus/prometheus.yml' - - '--storage.tsdb.path=/prometheus' - - '--web.console.libraries=/usr/share/prometheus/console_libraries' - - '--web.console.templates=/usr/share/prometheus/consoles' - - '--web.enable-lifecycle' + - --config.file=/etc/prometheus/prometheus.yml + - --storage.tsdb.path=/prometheus + - --web.console.libraries=/usr/share/prometheus/console_libraries + - --web.console.templates=/usr/share/prometheus/consoles + - --web.enable-lifecycle labels: - - "traefik.enable=true" - - "traefik.http.routers.prometheus.rule=Host(`prometheus.bouvais.lu`)" - - "traefik.http.routers.prometheus.entrypoints=websecure" - - "traefik.http.routers.prometheus.tls.certresolver=myresolver" - - "traefik.http.routers.prometheus.service=prometheus" - - "traefik.http.services.prometheus.loadbalancer.server.port=9090" - - "traefik.http.routers.prometheus.middlewares=auth@docker" + - traefik.enable=true + - traefik.http.routers.prometheus.rule=Host(`prometheus.bouvais.lu`) + - traefik.http.routers.prometheus.entrypoints=websecure + - traefik.http.routers.prometheus.tls.certresolver=myresolver + - traefik.http.routers.prometheus.service=prometheus + - traefik.http.services.prometheus.loadbalancer.server.port=9090 + - traefik.http.routers.prometheus.middlewares=auth@docker depends_on: - cadvisor - node-exporter @@ -39,13 +39,13 @@ services: - GF_SECURITY_ADMIN_PASSWORD=${GRAFANA_MY_PASSWORD} - GF_SERVER_ROOT_URL=https://grafana.bouvais.lu labels: - - "traefik.enable=true" - - "traefik.http.routers.grafana.rule=Host(`grafana.bouvais.lu`)" - - "traefik.http.routers.grafana.entrypoints=websecure" - - "traefik.http.routers.grafana.tls.certresolver=myresolver" - - "traefik.http.routers.grafana.service=grafana" - - "traefik.http.services.grafana.loadbalancer.server.port=3000" - - "traefik.http.routers.grafana.middlewares=auth@docker" + - traefik.enable=true" + - traefik.http.routers.grafana.rule=Host(`grafana.bouvais.lu`) + - traefik.http.routers.grafana.entrypoints=websecure + - traefik.http.routers.grafana.tls.certresolver=myresolver + - traefik.http.routers.grafana.service=grafana + - traefik.http.services.grafana.loadbalancer.server.port=3000 + - traefik.http.routers.grafana.middlewares=auth@docker depends_on: - prometheus @@ -73,16 +73,16 @@ services: - /sys:/host/sys:ro - /:/rootfs:ro command: - - '--path.procfs=/host/proc' - - '--path.sysfs=/host/sys' - - '--path.rootfs=/rootfs' - - '--collector.filesystem.mount-points-exclude=^/(sys|proc|dev|host|etc|rootfs/var/lib/docker/containers|rootfs/var/lib/docker/overlay2|rootfs/run/docker/netns|rootfs/var/lib/docker/aufs)($$|/)' + - --path.procfs=/host/proc + - --path.sysfs=/host/sys + - --path.rootfs=/rootfs + - --collector.filesystem.mount-points-exclude=^/(sys|proc|dev|host|etc|rootfs/var/lib/docker/containers|rootfs/var/lib/docker/overlay2|rootfs/run/docker/netns|rootfs/var/lib/docker/aufs)($$|/) nvidia-gpu-exporter: image: utkuozdemir/nvidia_gpu_exporter:1.3.1 container_name: nvidia-gpu-exporter restart: unless-stopped - privileged: true # This might be needed for full access to devices, or try without first + privileged: true devices: - /dev/nvidia0:/dev/nvidia0 volumes: diff --git a/vms.yml b/vms.yml index 2796fc4..23e9df7 100644 --- a/vms.yml +++ b/vms.yml @@ -13,11 +13,11 @@ services: -W bash labels: - - "traefik.enable=true" - - "traefik.http.routers.arch.rule=Host(`arch.bouvais.lu`)" - - "traefik.http.routers.arch.entrypoints=websecure" - - "traefik.http.routers.arch.tls.certresolver=myresolver" - - "traefik.http.services.arch.loadbalancer.server.port=7681" + - traefik.enable=true + - traefik.http.routers.arch.rule=Host(`arch.bouvais.lu`) + - traefik.http.routers.arch.entrypoints=websecure + - traefik.http.routers.arch.tls.certresolver=myresolver + - traefik.http.services.arch.loadbalancer.server.port=7681 deploy: resources: limits: @@ -41,11 +41,11 @@ services: -W bash labels: - - "traefik.enable=true" - - "traefik.http.routers.arch_gpu.rule=Host(`arch-gpu.bouvais.lu`)" - - "traefik.http.routers.arch_gpu.entrypoints=websecure" - - "traefik.http.routers.arch_gpu.tls.certresolver=myresolver" - - "traefik.http.services.arch_gpu.loadbalancer.server.port=7682" + - traefik.enable=true + - traefik.http.routers.arch_gpu.rule=Host(`arch-gpu.bouvais.lu`) + - traefik.http.routers.arch_gpu.entrypoints=websecure + - traefik.http.routers.arch_gpu.tls.certresolver=myresolver + - traefik.http.services.arch_gpu.loadbalancer.server.port=7682 deploy: resources: limits: