Open menu

How do you access all that


I have a bit of a complex setup, its a layered approach.

Port 80 and 443 are NATed from PFSense to an LXC container running nginx, nginx has config for all my sites so it knows where a site lives.

Anything run in docker is a template style config with minimal changes for the server name and if it needs oauth, that keeps the number of changes low.

In Docker, I run Traefik as the load balancer. Config is handled by service labels, that Traefik will pick up and setup routing for. This allow containers to only be seen in the docker network, not on the host. Docker will handle the routing to the right container on the right host, as you can connect to any host in the swarm for any service.

Published: 9 Nov 2024