compose changed

docker-compose.yml

@@ -1,5 +1,20 @@
 services:
 
+    certdumper:
+      image: ghcr.io/kereis/traefik-certs-dumper:latest
+      container_name: traefik_certdumper
+      restart: unless-stopped
+      network_mode: none
+      command: --restart-containers mailcow_postfix-mailcow_1,mailcow_dovecot-mailcow_1
+      volumes:
+        - ../traefik/certs/:/traefik/certs/:ro
+        # - traefik_certs:/traefik:ro # Traefik Zertifikate einhängen
+        - /var/run/docker.sock:/var/run/docker.sock:ro
+        - ./data/assets/ssl:/output:rw
+      environment:
+        - DOMAIN=domain.com
+        - ACME_FILE_PATH=/traefik/certs/cloudflare-acme.json # Dateipfad zur acme Datei
+
     unbound-mailcow:
       image: ghcr.io/mailcow/unbound:1.24
       environment:
@@ -71,7 +86,9 @@ services:
         unbound-mailcow:
           condition: service_healthy
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       environment:
         - TZ=${TZ}
         - SKIP_CLAMD=${SKIP_CLAMD:-n}
@@ -110,7 +127,9 @@ services:
       restart: always
       hostname: rspamd
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       networks:
         mailcow-network:
           aliases:
@@ -148,7 +167,9 @@ services:
         - ./data/assets/templates:/tpls:z
         - ./data/conf/nginx/:/etc/nginx/conf.d/:z
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       environment:
         - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-}
         - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-}
@@ -220,7 +241,9 @@ services:
         - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-}
         - REDISPASS=${REDISPASS}
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       volumes:
         - ./data/hooks/sogo:/hooks:Z
         - ./data/conf/sogo/:/etc/sogo/:z
@@ -258,7 +281,9 @@ services:
         - netfilter-mailcow
         - redis-mailcow
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       cap_add:
         - NET_BIND_SERVICE
       volumes:
@@ -374,7 +399,9 @@ services:
         - "${SUBMISSION_PORT:-587}:587"
       restart: always
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       networks:
         mailcow-network:
           ipv4_address: ${IPV4_NETWORK:-172.22.1}.253
@@ -397,7 +424,9 @@ services:
         - DEV_MODE=${DEV_MODE:-n}
       restart: always
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       networks:
         mailcow-network:
           aliases:
@@ -421,7 +450,9 @@ services:
         - rspamd-mailcow
       image: ghcr.io/mailcow/nginx:1.05
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       environment:
         - HTTPS_PORT=${HTTPS_PORT:-443}
         - HTTP_PORT=${HTTP_PORT:-80}
@@ -453,11 +484,34 @@ services:
       ports:
         - "${HTTPS_BIND:-}:${HTTPS_PORT:-443}:${HTTPS_PORT:-443}"
         - "${HTTP_BIND:-}:${HTTP_PORT:-80}:${HTTP_PORT:-80}"
+      expose:
+        - 8080
+      labels:
+        - traefik.enable=true
+        - traefik.http.routers.mailcow-autodiscover.entrypoints=websecure
+        - traefik.http.routers.mailcow-autodiscover.rule=Host(`autodiscover.byhaider.dev`) && Path(`/autodiscover/autodiscover.xml`)
+        - traefik.http.routers.mailcow-autodiscover.tls.certresolver=cloudflare
+        - traefik.http.routers.mailcow-autodiscover.service=mailcow-svc
+
+        - traefik.http.routers.mailcow-autoconfig.entrypoints=websecure
+        - traefik.http.routers.mailcow-autoconfig.rule=Host(`autoconfig.byhaider.dev`)&& Path(`/mail/config-v1.1.xml`)
+        - traefik.http.routers.mailcow-autoconfig.tls.certresolver=cloudflare
+        - traefik.http.routers.mailcow-autoconfig.service=mailcow-svc
+
+        - traefik.http.routers.mailcow.entrypoints=websecure
+        - traefik.http.routers.mailcow.rule=Host(`mail.byhaider.dev`)
+        - traefik.http.routers.mailcow.tls=true
+        - traefik.http.routers.mailcow.tls.certresolver=cloudflare
+        - traefik.http.routers.mailcow.service=mailcow-svc
+
+        - traefik.http.services.mailcow-svc.loadbalancer.server.port=8080
+        - traefik.docker.network=traefik-network
       restart: always
       networks:
         mailcow-network:
           aliases:
             - nginx
+        traefik-network:
 
     acme-mailcow:
       depends_on:
@@ -467,7 +521,9 @@ services:
           condition: service_healthy
       image: ghcr.io/mailcow/acme:1.94
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       environment:
         - LOG_LINES=${LOG_LINES:-9999}
         - ADDITIONAL_SAN=${ADDITIONAL_SAN}
@@ -524,7 +580,9 @@ services:
     watchdog-mailcow:
       image: ghcr.io/mailcow/watchdog:2.09
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       tmpfs:
         - /tmp
       volumes:
@@ -602,7 +660,9 @@ services:
         - label=disable
       restart: always
       dns:
-        - ${IPV4_NETWORK:-172.22.1}.254
+        # - ${IPV4_NETWORK:-172.22.1}.254
+        - 1.1.1.1
+        - 8.8.8.8
       environment:
         - DBROOT=${DBROOT}
         - TZ=${TZ}
@@ -667,6 +727,8 @@ networks:
       config:
         - subnet: ${IPV4_NETWORK:-172.22.1}.0/24
         - subnet: ${IPV6_NETWORK:-fd4d:6169:6c63:6f77::/64}
+  traefik-network:
+    external: true
 
 volumes:
   vmail-vol-1: