Based on https://github.com/nginx-proxy/nginx-proxy
A new env varaible ENABLE_ACME is added to use acme.sh to generate free ssl cert from letsencrypt.
All the other options are the same as the upstream project. It's very easy to use:
docker run \
-p 80:80 \
-p 443:443 \
-it -d --rm \
-v /var/run/docker.sock:/tmp/docker.sock:ro \
-v $(pwd)/proxy/certs:/etc/nginx/certs \
-v $(pwd)/proxy/acme:/acmecerts \
-v $(pwd)/proxy/conf.d:/etc/nginx/conf.d \
-v $(pwd)/vhost.d:/etc/nginx/vhost.d \
-v $(pwd)/stream.d:/etc/nginx/stream.d \
-v $(pwd)/dhparam:/etc/nginx/dhparam \
--name proxy \
xuejianbin/letsproxyversion: '2'
services:
letsproxy:
image: xuejianbin/letsproxy:latest
ports:
- "80:80"
- "443:443"
restart: unless-stopped
environment:
HTTPS_PORT: 443
HTTP_PORT: 80
# 可选:设置代理
HTTP_PROXY: "http://proxy.example.com:8080" # 设置 HTTP 代理
HTTPS_PROXY: "http://proxy.example.com:8080" # 设置 HTTPS 代理
NO_PROXY: "localhost,127.0.0.1" # 设置不使用代理的地址
volumes:
- /var/run/docker.sock:/tmp/docker.sock:ro
- ./proxy/certs:/etc/nginx/certs
- ./proxy/acme:/acmecerts
- ./proxy/conf.d:/etc/nginx/conf.d
- ./proxy/vhost.d:/etc/nginx/vhost.d
- ./proxy/stream.d:/etc/nginx/stream.d
- ./proxy/dhparam:/etc/nginx/dhparam
container_name: "sslproxy"需要设置一下几个参数,会自动根据VIRTUAL_HOST生成证书
docker run -itd --rm -p <server port>:80 -e VIRTUAL_HOST=example.com -e VIRTUAL_PORT=<server port> -e VIRTUAL_IP=<server ip> -e ENABLE_ACME=true httpd
或
version: '2'
services:
httpd:
image: httpd
ports:
- "8081:80"
restart: unless-stopped
environment:
- VIRTUAL_HOST=example.com
- VIRTUAL_PORT=8081
- VIRTUAL_IP=<server ip>
- ENABLE_ACME=true
另外修改acme生成证书为dnspod生成,默认首次使用,需要进入容器终端中,输入对应的变量,首次输入后,会自动保存acme目录下,后续不用再输入(注意不是secrect key),
export DP_Id=<dns id>
export DP_Key=<dns token>
acme.sh --register-account -m xxxxx@###.##