From 9155a817f20cd1dd6bb174cab2edcce1f63aab99 Mon Sep 17 00:00:00 2001 From: Thierry Schork Date: Thu, 26 Mar 2026 18:55:20 +0100 Subject: [PATCH] added uptime-kuma and script to allow INPUT rules to access lan from containers --- containers/uptime-kuma/docker-compose.yml | 24 +++++++++++++++++++++++ scripts/ufw.txt | 4 ++++ 2 files changed, 28 insertions(+) create mode 100644 containers/uptime-kuma/docker-compose.yml create mode 100644 scripts/ufw.txt diff --git a/containers/uptime-kuma/docker-compose.yml b/containers/uptime-kuma/docker-compose.yml new file mode 100644 index 0000000..63d4d75 --- /dev/null +++ b/containers/uptime-kuma/docker-compose.yml @@ -0,0 +1,24 @@ +services: + uptime-kuma: + image: louislam/uptime-kuma:2 + restart: unless-stopped + volumes: + - /srv/uptime-kuma/data:/app/data + networks: + - proxy + dns: + - 192.168.8.2 + labels: + - "traefik.enable=true" + - "traefik.docker.network=proxy" + - "traefik.http.routers.kuma.rule=Host(`kuma.schork.ch`)" + - "traefik.http.routers.kuma.entrypoints=websecure" + - "traefik.http.routers.kuma.tls=true" + - "traefik.http.services.kuma.loadbalancer.server.port=3001" +# ports: +# # : +# - "3001:3001" + +networks: + proxy: + external: true diff --git a/scripts/ufw.txt b/scripts/ufw.txt new file mode 100644 index 0000000..2a21b98 --- /dev/null +++ b/scripts/ufw.txt @@ -0,0 +1,4 @@ +#allow docker bridge to enter back to the lan network (split-dns monitoring via uptime kuma) + +ufw allow proto tcp from 172.21.0.0/16 to 192.168.8.93 port 443 +ufw allow proto tcp from 172.21.0.0/16 to 192.168.8.93 port 80