akanealw/proxyserver
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
4f2c5037d01f132beadf92d5d961908abbaef3ef
proxyserver/fileConfig.yml

82 lines
2.4 KiB
YAML
Raw Blame History

http:
## EXTERNAL ROUTING EXAMPLE - Only use if you want to proxy something manually ##
routers:
# homeassistant:
# entryPoints:
# - https
# rule: 'Host(`homeassistant.domain.com`)'
# service: homeassistant
# middlewares:
# - "auth"
# ## SERVICES EXAMPLE ##
services:
# homeassistant:
# loadBalancer:
# servers:
# - url: http://192.168.60.5:8123/
# ## MIDDLEWARES ##
middlewares:
# Only Allow Local networks
# local-ipwhitelist:
# ipWhiteList:
# sourceRange:
# - 127.0.0.1/32 # localhost
# - 192.168.1.1/24 # LAN Subnet
# # Authelia guard
# authelia:
# forwardauth:
# address: http://authelia:9091/api/verify?rd=https://identity.aknlw.com/ # replace auth with your authelia container name
# trustForwardHeader: true
# authResponseHeaders:
# - Remote-User
# - Remote-Groups
# - Remote-Name
# - Remote-Email
# # Authelia basic auth guard
# authelia-basic:
# forwardauth:
# address: http://authelia:9091/api/verify?auth=basic # replace auth with your authelia container name
# trustForwardHeader: true
# authResponseHeaders:
# - Remote-User
# - Remote-Groups
# - Remote-Name
# - Remote-Email
# Security headers
securityHeaders:
headers:
customResponseHeaders:
X-Robots-Tag: "none,noarchive,nosnippet,notranslate,noimageindex"
server: ""
X-Forwarded-Proto: "https"
sslProxyHeaders:
X-Forwarded-Proto: https
referrerPolicy: "strict-origin-when-cross-origin"
hostsProxyHeaders:
- "X-Forwarded-Host"
customRequestHeaders:
X-Forwarded-Proto: "https"
contentTypeNosniff: true
browserXssFilter: true
forceSTSHeader: true
stsIncludeSubdomains: true
stsSeconds: 63072000
stsPreload: true
# Only use secure ciphers - https://ssl-config.mozilla.org/#server=traefik&version=2.6.0&config=intermediate&guideline=5.6
tls:
options:
default:
minVersion: VersionTLS12
cipherSuites:
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305
- TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305
Reference in New Issue View Git Blame Copy Permalink