Docker Portainer
Container Portainer.io
# docker $ docker volume create portainer_data $ docker run -d -p 127.0.0.1:9000:9000 --name portainer --restart always -v /var/run/docker.sock:/var/run/docker.sock -v portainer_data:/data portainer/portainer # bash Zugriff $ docker exec -ti "portainer" env TERM=xterm bash -l
nginx.conf
upstream meinserver.meinedomain.de {
server MEINEIP weight=1 fail_timeout=0;
}
server {
listen meinserver.meinedomain.de:80;
server_name meinserver.meinedomain.de;
rewrite ^/.*$ https://$host$request_uri? permanent;
}
server {
listen meinserver.meinedomain.de:443 ssl;
server_name meinserver.meinedomain.de;
access_log /var/log/nginx/portainer.meinserver.meinedomain.de-access.log;
error_log /var/log/nginx/portainer.meinserver.meinedomain.de-error.log;
# ssl certificate files
ssl on;
ssl_certificate /etc/ssl/wildcard_meinedomain.de.crt;
ssl_certificate_key /etc/ssl/wildcard_meinedomain.de.key;
#zert2 ssl_certificate /etc/letsencrypt/live/wildcard_meinedomain.de.crt/fullchain.pem;
#zert2 ssl_certificate_key /etc/letsencrypt/live/wildcard_meinedomain.de.key/privkey.pem;
# add ssl specific settings
keepalive_timeout 60;
ssl_protocols TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
ssl_ciphers HIGH:!aNULL:!MD5;
# limit ciphers
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 5m;
# error pages
error_page 500 502 503 504 /custom_50x.html;
location = /custom_50x.html {
root /usr/share/nginx/html;
internal;
}
location / {
proxy_http_version 1.1;
proxy_set_header Connection "";
proxy_pass http://127.0.0.1:9000/;
}
location /api/websocket/ {
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_http_version 1.1;
proxy_pass http://127.0.0.1:9000/api/websocket/;
}
}