diff --git a/.DS_Store b/.DS_Store index 9995b62..b78fb1d 100644 Binary files a/.DS_Store and b/.DS_Store differ diff --git a/.claude/settings.local.json b/.claude/settings.local.json new file mode 100644 index 0000000..749144e --- /dev/null +++ b/.claude/settings.local.json @@ -0,0 +1,12 @@ +{ + "permissions": { + "allow": [ + "Bash(ansible-playbook:*)", + "WebSearch", + "WebFetch(domain:caddyserver.com)", + "Bash(ansible caddy_servers -i inventory.ini -m shell -a \"mkdir -p /var/log/caddy && chown caddy:caddy /var/log/caddy && chmod 755 /var/log/caddy\" --limit 192.168.31.101)" + ], + "deny": [], + "ask": [] + } +} diff --git a/files/.DS_Store b/files/.DS_Store index 36e5e24..e8742a8 100644 Binary files a/files/.DS_Store and b/files/.DS_Store differ diff --git a/files/192.168.31.101/Caddyfile b/files/192.168.31.101/Caddyfile index 538dd68..9ff789e 100644 --- a/files/192.168.31.101/Caddyfile +++ b/files/192.168.31.101/Caddyfile @@ -72,16 +72,6 @@ frps.10000h.de { import securityHeaders } -docker.10000h.de { - reverse_proxy http://192.238.204.39:51000 - # import securityHeaders -} - -ghcr.10000h.de { - reverse_proxy http://192.238.204.39:52000 - import securityHeaders -} - pve.10000h.de { handle { reverse_proxy https://192.168.31.2:8006 { @@ -95,19 +85,6 @@ pve.10000h.de { } } -pvel.10000h.de { - handle { - reverse_proxy https://192.168.31.2:8006 { - transport http { - tls_insecure_skip_verify - } - header_up Host {http.reverse_proxy.host} - header_up X-Forwarded-Host {host} - } - # import securityHeaders - } -} - fndav.10000h.de { reverse_proxy http://192.168.31.3:5005 # import securityHeaders @@ -118,35 +95,15 @@ fnos.10000h.de { # import securityHeaders } -fnosl.10000h.de { - reverse_proxy http://192.168.31.3:5666 - # import securityHeaders -} - openwrt.10000h.de { reverse_proxy http://192.168.31.4:80 # import securityHeaders } -arch.10000h.de { - reverse_proxy http://192.168.31.4:10808 - # import securityHeaders -} - -duet.10000h.de { - reverse_proxy http://NUC:3389 - # import securityHeaders -} - -nuc.10000h.de { - reverse_proxy http://NUC:3389 - # import securityHeaders -} - -ddns.10000h.de { - reverse_proxy http://192.168.31.101:9876 - import securityHeaders -} +# ddns.10000h.de { +# reverse_proxy http://192.168.31.101:9876 +# import securityHeaders +# } frpc.10000h.de { reverse_proxy http://192.168.31.101:7400 @@ -173,16 +130,11 @@ n8n.10000h.de { import securityHeaders } -affine.10000h.de { - reverse_proxy http://192.168.31.108:3010 +gitea.10000h.de { + reverse_proxy http://192.168.31.108:3000 import securityHeaders } -valutwarden.10000h.de { - reverse_proxy http://192.168.31.109:11001 - import securityHeaders -} - kubepi.10000h.de { reverse_proxy http://192.168.31.110:80 import securityHeaders @@ -193,24 +145,6 @@ openlist.10000h.de { # import securityHeaders } -sp.10000h.de { - reverse_proxy http://192.168.31.112:8080 - import securityHeaders - route /webdav* { - reverse_proxy http://192.168.31.112:2345 - } -} - -mattermost.10000h.de { - reverse_proxy http://192.168.31.113:8065 - # import securityHeaders -} - -rocketchat.10000h.de { - reverse_proxy http://192.168.31.114:3000 - import securityHeaders -} - tts.10000h.de { reverse_proxy http://192.168.31.115:8000 # import securityHeaders @@ -240,4 +174,14 @@ n8nk.10000h.de { import securityHeaders } +duet.10000h.de { + reverse_proxy http://DUET:3389 + # import securityHeaders +} + +nuc.10000h.de { + reverse_proxy http://NUC:3389 + # import securityHeaders +} + diff --git a/files/192.238.204.39/Caddyfile b/files/192.238.204.39/Caddyfile index c00c374..64bca4e 100644 --- a/files/192.238.204.39/Caddyfile +++ b/files/192.238.204.39/Caddyfile @@ -1,3 +1,6 @@ +# Caddy's configuration file +# see: https://caddyserver.com/docs/caddyfile + # The Caddyfile is an easy way to configure your Caddy web server. # # Unless the file starts with a global options block, the first @@ -8,6 +11,20 @@ # this machine's public IP, then replace ":80" below with your # domain name. +#:80 { +# # Set this path to your site's directory. +# root * /usr/share/caddy +# +# # Enable the static file server. +# file_server +# +# # Another common task is to set up a reverse proxy: +# # reverse_proxy localhost:8080 +# +# # Or serve a PHP site through php-fpm: +# # php_fastcgi localhost:9000 +#} + # Refer to the Caddy docs for more information: # https://caddyserver.com/docs/caddyfile @@ -55,16 +72,11 @@ daed.10000h.de { import securityHeaders } -rocketchat.10000h.de { +gitea.10000h.de { reverse_proxy http://127.0.0.1:3000 import securityHeaders } -affine.10000h.de { - reverse_proxy http://127.0.0.1:3010 - import securityHeaders -} - lobe.10000h.de { reverse_proxy http://127.0.0.1:3210 { transport http { @@ -73,10 +85,14 @@ lobe.10000h.de { } } -rdp.10000h.de { +duet.10000h.de { reverse_proxy http://127.0.0.1:3389 } +nuc.10000h.de { + reverse_proxy http://127.0.0.1:3390 +} + fndav.10000h.de { reverse_proxy http://127.0.0.1:5005 # import securityHeaders @@ -97,14 +113,6 @@ n8n.10000h.de { # import securityHeaders } -vnc.10000h.de { - reverse_proxy http://127.0.0.1:5900 -} - -couchdb.10000h.de { - reverse_proxy http://127.0.0.1:5984 -} - frps.10000h.de { reverse_proxy http://127.0.0.1:7001 import securityHeaders @@ -148,19 +156,6 @@ dify.10000h.de { import securityHeaders } -mattermost.10000h.de { - reverse_proxy http://127.0.0.1:8065 - import securityHeaders -} - -sp.10000h.de { - reverse_proxy http://127.0.0.1:8082 - import securityHeaders - route /webdav* { - reverse_proxy http://127.0.0.1:2345 - } -} - kubepi.10000h.de { reverse_proxy http://127.0.0.1:8084 import securityHeaders @@ -171,16 +166,6 @@ ddns.10000h.de { import securityHeaders } -arch.10000h.de { - reverse_proxy http://127.0.0.1:10808 - import securityHeaders -} - -vaulewarden.10000h.de { - reverse_proxy http://127.0.0.1:11001 - import securityHeaders -} - # ------------------------------ # k3s Services # ------------------------------