Container Portainer.io

# docker
$ docker volume create portainer_data
$ docker run -d -p 127.0.0.1:9000:9000 --name portainer --restart always -v /var/run/docker.sock:/var/run/docker.sock -v portainer_data:/data portainer/portainer

# bash Zugriff 
$ docker exec -ti "portainer" env TERM=xterm bash -l

nginx.conf

upstream meinserver.meinedomain.de {
        server MEINEIP weight=1 fail_timeout=0;
}

server {
        listen meinserver.meinedomain.de:80;
        server_name meinserver.meinedomain.de;
        rewrite ^/.*$ https://$host$request_uri? permanent;
}

server {
        listen meinserver.meinedomain.de:443 ssl;
        server_name meinserver.meinedomain.de;
        access_log /var/log/nginx/portainer.meinserver.meinedomain.de-access.log;
        error_log /var/log/nginx/portainer.meinserver.meinedomain.de-error.log;

        # ssl certificate files
        ssl on;
        ssl_certificate /etc/ssl/wildcard_meinedomain.de.crt;
        ssl_certificate_key /etc/ssl/wildcard_meinedomain.de.key;
        #zert2 ssl_certificate /etc/letsencrypt/live/wildcard_meinedomain.de.crt/fullchain.pem;
        #zert2 ssl_certificate_key /etc/letsencrypt/live/wildcard_meinedomain.de.key/privkey.pem;


        # add ssl specific settings
        keepalive_timeout    60;
        ssl_protocols        TLSv1.1 TLSv1.2;
        ssl_prefer_server_ciphers on;
        ssl_ciphers         HIGH:!aNULL:!MD5;

        # limit ciphers
        ssl_session_cache    shared:SSL:1m;
        ssl_session_timeout  5m;

        # error pages
        error_page 500 502 503 504 /custom_50x.html;
        location = /custom_50x.html {
                root /usr/share/nginx/html;
                internal;
        }

        location / {
        proxy_http_version 1.1;
        proxy_set_header Connection "";
        proxy_pass http://127.0.0.1:9000/;
        }

        location /api/websocket/ {
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "upgrade";
        proxy_http_version 1.1;
        proxy_pass http://127.0.0.1:9000/api/websocket/;
        }

}

Rechtliche Hinweise / Impressum

Browser nicht unterstützt