iac/docker/npm/docker-compose.yml

---
services:
  nginx:
    image: jc21/nginx-proxy-manager:2.12.1
    container_name: nginx-proxy-manager
    ports:
      - 80:80
      - 81:81
      - 443:443
    volumes:
      - /docker/appdata/nginx/data:/data
      - /docker/appdata/nginx/letsencrypt:/etc/letsencrypt
    restart: unless-stopped
  
  fail2ban:
    image: crazymax/fail2ban:1.1.0
    container_name: fail2ban_docker-pi
    network_mode: "host"
    cap_add:
      - NET_ADMIN
      - NET_RAW
    volumes:
      - "/docker/appdata/fail2ban/data:/data"
      - "/var/log/auth.log:/var/log/auth.log:ro"
      - "/docker/appdata/nginx/data/logs/:/log/npm/:ro"
    environment:
      - TZ=America/New_York
      - F2B_LOG_TARGET=STDOUT
      - F2B_LOG_LEVEL=INFO
      - F2B_DB_PURGE_AGE=1d
      - SSMTP_HOST=$SSMTP_HOST
      - SSMTP_PORT=587
      - SSMTP_HOSTNAME=$SSMTP_HOSTNAME
      - SSMTP_USER=$SSMTP_USER
      - SSMTP_PASSWORD=$SSMTP_PASSWORD
      - SSMTP_TLS=YES
    restart: always
  
  cf-tunnel:
    restart: unless-stopped
    image: cloudflare/cloudflared@sha256:3f25f0d97e284adf7d0fe298c6be29b84750880df2c1fe4f94cfa90dbd3c4cfa
    command: tunnel --no-autoupdate run --token $CF_TOKEN

  twingate-famous-alligator:
    image: twingate/connector@sha256:376f13c489257893f530470ef4727d2b17de5c593eecb5b11be50966c743ec16
    container_name: twingate-famous-alligator
    restart: always
    environment:
      - TWINGATE_NETWORK=$TWINGATE_NETWORK
      - TWINGATE_ACCESS_TOKEN=$TWINGATE_ACCESS_TOKEN
      - TWINGATE_REFRESH_TOKEN=$TWINGATE_REFRESH_TOKEN
      - TWINGATE_LABEL_HOSTNAME=${HOSTNAME}
      - TWINGATE_LABEL_DEPLOYED_BY=docker
    sysctls:
      - net.ipv4.ping_group_range=0 2147483647
adding npm 2024-09-15 23:05:32 -04:00			`---`
			`services:`
			`nginx:`
:arrow_up: Update jc21/nginx-proxy-manager Docker tag to v2.12.1 2024-10-16 21:00:58 -04:00			`image: jc21/nginx-proxy-manager:2.12.1`
adding npm 2024-09-15 23:05:32 -04:00			`container_name: nginx-proxy-manager`
			`ports:`
			`- 80:80`
			`- 81:81`
			`- 443:443`
			`volumes:`
			`- /docker/appdata/nginx/data:/data`
			`- /docker/appdata/nginx/letsencrypt:/etc/letsencrypt`
			`restart: unless-stopped`
add f2b 2024-09-15 23:16:20 -04:00
			`fail2ban:`
fix f2b image tag 2024-09-15 23:17:30 -04:00			`image: crazymax/fail2ban:1.1.0`
add f2b 2024-09-15 23:16:20 -04:00			`container_name: fail2ban_docker-pi`
			`network_mode: "host"`
			`cap_add:`
			`- NET_ADMIN`
			`- NET_RAW`
			`volumes:`
			`- "/docker/appdata/fail2ban/data:/data"`
			`- "/var/log/auth.log:/var/log/auth.log:ro"`
			`- "/docker/appdata/nginx/data/logs/:/log/npm/:ro"`
			`environment:`
			`- TZ=America/New_York`
			`- F2B_LOG_TARGET=STDOUT`
			`- F2B_LOG_LEVEL=INFO`
			`- F2B_DB_PURGE_AGE=1d`
			`- SSMTP_HOST=$SSMTP_HOST`
			`- SSMTP_PORT=587`
			`- SSMTP_HOSTNAME=$SSMTP_HOSTNAME`
			`- SSMTP_USER=$SSMTP_USER`
			`- SSMTP_PASSWORD=$SSMTP_PASSWORD`
			`- SSMTP_TLS=YES`
move cf and twingate to npm 2024-11-02 22:42:53 -04:00			`restart: always`

			`cf-tunnel:`
			`restart: unless-stopped`
:arrow_up: Update cloudflare/cloudflared Docker digest to 3f25f0d 2024-11-06 14:03:26 -05:00			`image: cloudflare/cloudflared@sha256:3f25f0d97e284adf7d0fe298c6be29b84750880df2c1fe4f94cfa90dbd3c4cfa`
move cf and twingate to npm 2024-11-02 22:42:53 -04:00			`command: tunnel --no-autoupdate run --token $CF_TOKEN`

			`twingate-famous-alligator:`
:arrow_up: Update twingate/connector Docker digest to 376f13c 2024-11-06 15:01:32 -05:00			`image: twingate/connector@sha256:376f13c489257893f530470ef4727d2b17de5c593eecb5b11be50966c743ec16`
move cf and twingate to npm 2024-11-02 22:42:53 -04:00			`container_name: twingate-famous-alligator`
			`restart: always`
			`environment:`
			`- TWINGATE_NETWORK=$TWINGATE_NETWORK`
			`- TWINGATE_ACCESS_TOKEN=$TWINGATE_ACCESS_TOKEN`
			`- TWINGATE_REFRESH_TOKEN=$TWINGATE_REFRESH_TOKEN`
			`- TWINGATE_LABEL_HOSTNAME=${HOSTNAME}`
			`- TWINGATE_LABEL_DEPLOYED_BY=docker`
			`sysctls:`
			`- net.ipv4.ping_group_range=0 2147483647`