From ee5d00bc30d30df23cc0a0b7f1118094c4c4a453 Mon Sep 17 00:00:00 2001 From: akanealw Date: Tue, 1 Apr 2025 13:47:51 -0500 Subject: [PATCH] changed names to internal and external --- reverseproxy/caddy/Caddyfile | 80 ++++++++++++++++++------------------ 1 file changed, 40 insertions(+), 40 deletions(-) diff --git a/reverseproxy/caddy/Caddyfile b/reverseproxy/caddy/Caddyfile index d9a1b66..18aa1cf 100644 --- a/reverseproxy/caddy/Caddyfile +++ b/reverseproxy/caddy/Caddyfile @@ -90,7 +90,7 @@ auth.akanealw.com { # # @ host .akanealw.com # handle @ { -# handle @allowed { +# handle @internal { # reverse_proxy 192.168.1. # } # respond "ip range not allowed" @@ -99,7 +99,7 @@ auth.akanealw.com { # # @ host .akanealw.com # handle @ { -# handle @allowed { +# handle @internal { # reverse_proxy https://192.168.1. { # transport http { # tls_insecure_skip_verify @@ -111,12 +111,12 @@ auth.akanealw.com { # # # -------------------------------------------------- - @allowed client_ip 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8 127.0.0.1/8 + @internal client_ip 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8 127.0.0.1/8 import cloudflare @checkmk host checkmk.akanealw.com handle @checkmk { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.4:8888 } respond "ip range not allowed" @@ -124,7 +124,7 @@ auth.akanealw.com { @linkwarden host linkwarden.akanealw.com handle @linkwarden { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.4:3232 } respond "ip range not allowed" @@ -132,7 +132,7 @@ auth.akanealw.com { @adguard1 host adguardserver1.akanealw.com handle @adguard1 { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.2:80 } respond "ip range not allowed" @@ -140,7 +140,7 @@ auth.akanealw.com { @adguard2 host adguardserver2.akanealw.com handle @adguard2 { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.3:80 } respond "ip range not allowed" @@ -148,7 +148,7 @@ auth.akanealw.com { @bale host bale.akanealw.com handle @bale { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.51:8080 } respond "ip range not allowed" @@ -156,7 +156,7 @@ auth.akanealw.com { @cronicle host cronicle.akanealw.com handle @cronicle { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:3012 } respond "ip range not allowed" @@ -164,7 +164,7 @@ auth.akanealw.com { @devdockge host dev-dockge.akanealw.com handle @devdockge { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.35:5001 } respond "ip range not allowed" @@ -172,7 +172,7 @@ auth.akanealw.com { @devdozzle host dev-dozzle.akanealw.com handle @devdozzle { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.35:8080 } respond "ip range not allowed" @@ -180,7 +180,7 @@ auth.akanealw.com { @dockerdockge host dockerserver-dockge.akanealw.com handle @dockerdockge { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:5001 } respond "ip range not allowed" @@ -188,7 +188,7 @@ auth.akanealw.com { @dockerdozzle host dockerserver-dozzle.akanealw.com handle @dockerdozzle { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:8080 } respond "ip range not allowed" @@ -196,7 +196,7 @@ auth.akanealw.com { @dockertestdockge host dockerservertest-dockge.akanealw.com handle @dockertestdockge { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.33:5001 } respond "ip range not allowed" @@ -204,7 +204,7 @@ auth.akanealw.com { @dockertestdozzle host dockerservertest-dozzle.akanealw.com handle @dockertestdozzle { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.33:8080 } respond "ip range not allowed" @@ -212,7 +212,7 @@ auth.akanealw.com { @proxyserverdockge host proxyserver-dockge.akanealw.com handle @proxyserverdockge { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.4:5001 } respond "ip range not allowed" @@ -220,7 +220,7 @@ auth.akanealw.com { @proxyserverdozzle host proxyserver-dozzle.akanealw.com handle @proxyserverdozzle { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.4:8080 } respond "ip range not allowed" @@ -228,7 +228,7 @@ auth.akanealw.com { @files host files.akanealw.com handle @files { - handle @allowed { + handle @internal { redir / /files{uri} reverse_proxy 192.168.1.50:80 } @@ -237,7 +237,7 @@ auth.akanealw.com { @icons host icons.akanealw.com handle @icons { - handle @allowed { + handle @internal { rewrite * /files/icons{uri} reverse_proxy 192.168.1.50:80 } @@ -246,7 +246,7 @@ auth.akanealw.com { @gluetun host gluetun.akanealw.com handle @gluetun { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:8777 } respond "ip range not allowed" @@ -254,7 +254,7 @@ auth.akanealw.com { @peanut host peanut.akanealw.com handle @peanut { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:8980 } respond "ip range not allowed" @@ -262,7 +262,7 @@ auth.akanealw.com { @photoprism host photoprism.akanealw.com handle @photoprism { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:2342 } respond "ip range not allowed" @@ -270,7 +270,7 @@ auth.akanealw.com { @photoprismdadandmom host photos.akanealw.com handle @photoprismdadandmom { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.25:2342 } respond "ip range not allowed" @@ -278,7 +278,7 @@ auth.akanealw.com { @proxmox1 host proxmox1.akanealw.com handle @proxmox1 { - handle @allowed { + handle @internal { reverse_proxy https://192.168.1.51:8006 { transport http { tls_insecure_skip_verify @@ -290,7 +290,7 @@ auth.akanealw.com { @proxmox2 host proxmox2.akanealw.com handle @proxmox2 { - handle @allowed { + handle @internal { reverse_proxy https://192.168.1.52:8006 { transport http { tls_insecure_skip_verify @@ -302,7 +302,7 @@ auth.akanealw.com { @proxmoxbackup host proxmoxbackup.akanealw.com handle @proxmoxbackup { - handle @allowed { + handle @internal { reverse_proxy https://192.168.1.51:8007 { transport http { tls_insecure_skip_verify @@ -314,7 +314,7 @@ auth.akanealw.com { @router host router.akanealw.com handle @router { - handle @allowed { + handle @internal { reverse_proxy https://192.168.1.1:443 { transport http { tls_insecure_skip_verify @@ -326,7 +326,7 @@ auth.akanealw.com { @rssbridge host rss-bridge.akanealw.com handle @rssbridge { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:3006 } respond "ip range not allowed" @@ -334,7 +334,7 @@ auth.akanealw.com { @invidious host invidious.akanealw.com handle @invidious { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:3000 } respond "ip range not allowed" @@ -342,7 +342,7 @@ auth.akanealw.com { @scripts host scripts.akanealw.com handle @scripts { - handle @allowed { + handle @internal { redir / /scripts{uri} reverse_proxy 192.168.1.50:80 } @@ -351,7 +351,7 @@ auth.akanealw.com { @speedtest host speedtest.akanealw.com handle @speedtest { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.30:8765 } respond "ip range not allowed" @@ -359,7 +359,7 @@ auth.akanealw.com { @dockersyncthing host dockerserver-syncthing.akanealw.com handle @dockersyncthing { - handle @allowed { + handle @internal { reverse_proxy https://192.168.1.30:8384 { transport http { tls_insecure_skip_verify @@ -371,7 +371,7 @@ auth.akanealw.com { @gamingpcsyncthing host gamingpc-syncthing.akanealw.com handle @gamingpcsyncthing { - handle @allowed { + handle @internal { reverse_proxy https://192.168.1.11:8384 { transport http { tls_insecure_skip_verify @@ -383,7 +383,7 @@ auth.akanealw.com { @laptoppcsyncthing host laptoppc-syncthing.akanealw.com handle @laptoppcsyncthing { - handle @allowed { + handle @internal { reverse_proxy https://192.168.1.12:8384 { transport http { tls_insecure_skip_verify @@ -395,7 +395,7 @@ auth.akanealw.com { @webmin host webmin.akanealw.com handle @webmin { - handle @allowed { + handle @internal { reverse_proxy https://192.168.1.51:10000 { transport http { tls_insecure_skip_verify @@ -407,7 +407,7 @@ auth.akanealw.com { @wireguardui host wireguardui.akanealw.com handle @wireguardui { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.4:5000 } respond "ip range not allowed" @@ -415,7 +415,7 @@ auth.akanealw.com { @zabbix host zabbix.akanealw.com handle @zabbix { - handle @allowed { + handle @internal { reverse_proxy 192.168.1.44:8080 } respond "ip range not allowed" @@ -423,7 +423,7 @@ auth.akanealw.com { @piholewg host pihole-wg.akanealw.com handle @piholewg { - handle @allowed { + handle @internal { redir / /admin{uri} reverse_proxy 192.168.1.4:3000 } @@ -474,11 +474,11 @@ auth.akanealw.com { # # # -------------------------------------------------- - @force-auth not client_ip 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8 127.0.0.1/8 + @external not client_ip 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8 127.0.0.1/8 @memos host memos.akanealw.com handle @memos { - handle @force-auth { + handle @external { import auth } reverse_proxy 192.168.1.4:5230