* Several updates 2024_05_01. See full commit log.

* Updated Traefik to v3 (on home server - hs). The rest will be migrated over slowly.
* Syntax updated for Traefik v3 compatibility - Headers to Header, HeadersRegexp to HeaderRegexp, HostSNIRegexp, etc. Check https://www.smarthomebeginner.com/traefik-v3-docker-compose-guide-2024/#Migrating_from_Traefik_v2_to_v3.
* "t2_proxy" network is now "t3_proxy" to represent Traefik v3. Subnet 192.168.90.0/24 remains the same.
* Continuing to maintain both Traefik v2 and Traefik v3 appdata folders (at least for a few more months).
* Removed compress middleware - was causing unnessary log warnings about mime type. I could not find a solution.
* Removed Docker Compose version tags.
* Added Authelia, Scrutiny, Kasm (WIP), and Firefly + Importer.
* Bash Aliases updates.
* Nginx verion update to 1.24 in web server (ws).
* docker-compose-dns.yml is work-in-progress.

Author: SimpleHomelab

.gitignore

@@ -95,6 +95,37 @@ appdata/traefik2/rules/ws/*
 !appdata/traefik2/rules/ws/middlewares-*.yml
 !appdata/traefik2/rules/ws/chain-*.yml
 
+!appdata/traefik3
+appdata/traefik3/*
+!appdata/traefik3/*.example
+!appdata/traefik3/rules
+appdata/traefik3/rules/*
+!appdata/traefik3/rules/*.example
+!appdata/traefik3/rules/ws
+appdata/traefik3/rules/ws/*
+!appdata/traefik3/rules/ws/*.example
+!appdata/traefik3/rules/toml
+appdata/traefik3/rules/toml/*
+!appdata/traefik3/rules/toml/*.example
+!appdata/traefik3/rules/ds918
+appdata/traefik3/rules/ds918/*
+!appdata/traefik3/rules/ds918/*.example
+!appdata/traefik3/rules/ds918/tls-opts.yml
+!appdata/traefik3/rules/ds918/middlewares-*.yml
+!appdata/traefik3/rules/ds918/chain-*.yml
+!appdata/traefik3/rules/hs
+appdata/traefik3/rules/hs/*
+!appdata/traefik3/rules/hs/*.example
+!appdata/traefik3/rules/hs/tls-opts.yml
+!appdata/traefik3/rules/hs/middlewares-*.yml
+!appdata/traefik3/rules/hs/chain-*.yml
+!appdata/traefik3/rules/ws
+appdata/traefik3/rules/ws/*
+!appdata/traefik3/rules/ws/*.example
+!appdata/traefik3/rules/ws/tls-opts.yml
+!appdata/traefik3/rules/ws/middlewares-*.yml
+!appdata/traefik3/rules/ws/chain-*.yml
+
 !appdata/authelia
 appdata/authelia/*
 !appdata/authelia/*.example

README.md

@@ -7,16 +7,21 @@ This is the updated docker-compose repo of all the media, home, and web server a
 ### Ubuntu/Debian:
 
 <ol>
-<li><a href="https://www.smarthomebeginner.com/ultimate-docker-server-1-os-preparation/">Ultimate Docker Server: Getting Started with OS Preparation</a> <span style="color:#50C878">[2024]</span></li>
+<li><a href="https://www.smarthomebeginner.com/ultimate-docker-server-1-os-preparation/">Ultimate Docker Server: Getting Started with OS Preparation</a> <span style="color:#6b5b95">[<a href="https://youtu.be/-ZSQdJ62r-Q" target="_blank" rel="noopener">VIDEO</a>]</span> <span style="color:#50C878">[2024]</span></li>
 <li><a href="https://www.smarthomebeginner.com/docker-media-server-2024/">Docker Media Server Ubuntu/Debian with 60+ Awesome Apps</a> <span style="color:#50C878">[2024]</span></li>
+<li>ZeroTier VPN Ubuntu, Docker, Synology, Windows: Secure on-the-go access <span style="color:#ffa400">[coming soon]</span></li>
 <li>Nginx Proxy Manager Docker Compose Guide: Simplest Reverse Proxy <span style="color:#ffa400">[coming soon]</span></li>
-<li><a href="https://www.smarthomebeginner.com/traefik-docker-compose-guide-2024/">Ultimate Traefik Docker Compose Guide: LE, SSL, Reverse Proxy</a> <span style="color:#50C878">[2024]</span></li>
-<li><a href="https://www.smarthomebeginner.com/docker-authelia-tutorial/">Authelia Docker Compose Guide: Secure 2-Factor Authentication</a> <span style="color:#ffa400">[2024 Update in Progress]</span></li>
-<li><a href="https://www.smarthomebeginner.com/traefik-forward-auth-google-oauth-2022/">Google OAuth Docker Compose Guide: Multi-Factor Authentication</a> <span style="color:#ffa400">[2024 Update in Progress]</span></li>
+<li>Traefik Reverse Proxy
+<ul>
+<li>Traefik v3: <a href="https://www.smarthomebeginner.com/traefik-v3-docker-compose-guide-2024/">Ultimate Traefik v3 Docker Compose Guide [2024]: LE, SSL, Reverse Proxy</a> <span style="color:#50C878">[2024]</span></li>
+<li>Traefik v2: <a href="https://www.smarthomebeginner.com/traefik-docker-compose-guide-2024/">Ultimate Traefik Docker Compose Guide: LE, SSL, Reverse Proxy</a> <span style="color:#50C878">[2024]</span></li>
+</ul>
+</li>
+<li><a href="https://www.smarthomebeginner.com/authelia-docker-compose-guide-2024/">Authelia Docker Compose Guide: Secure 2-Factor Authentication</a> <span style="color:#50C878">[2024]</span></li>
+<li><a href="https://www.smarthomebeginner.com/google-oauth-traefik-forward-auth-2024/">Google OAuth Docker Compose Guide: Multi-Factor Authentication</a> <span style="color:#50C878">[2024]</span></li>
 <li><a href="https://www.smarthomebeginner.com/traefik-docker-security-best-practices/">Docker Security Practices for Homelab: Secrets, Firewall, and more</a></li>
 <li><a href="https://www.smarthomebeginner.com/cloudflare-settings-for-traefik-docker/">Cloudflare Settings for Docker Traefik Stacks</a></li>
 <li>Implementing a Backup System for Docker Traefik Stack <span style="color:#ffa400">[coming soon]</span></li>
-<li><a href="https://www.smarthomebeginner.com/auto-traefik/">Automate the Whole Process with Auto-Traefik Script</a></li>
 </ol>
 
 ### Synology:

appdata/traefik2/rules/hs/app-tautulli-with-auth-bypass.yml.example

@@ -9,8 +9,8 @@ http:
         - chain-oauth
       service: tautulli-svc
     tautulli-rtr-bypass:
-      # rule: "Host(`tautulli.$DOMAINNAME_HS`) && Headers(`traefik-auth-bypass-key`, `$TRAEFIK_AUTH_BYPASS_KEY`)" # Bypass Auth for LunaSea on iOS
-      rule: "Host(`tautulli.$DOMAINNAME_HS`) && (Headers(`X-Api-Key`, `$TAUTULLI_API_KEY`) || Query(`apikey`, `$TAUTULLI_API_KEY`))" 
+      # rule: "Host(`tautulli.$DOMAINNAME_HS`) && Header(`traefik-auth-bypass-key`, `$TRAEFIK_AUTH_BYPASS_KEY`)" # Bypass Auth for LunaSea on iOS
+      rule: "Host(`tautulli.$DOMAINNAME_HS`) && (Header(`X-Api-Key`, `$TAUTULLI_API_KEY`) || Query(`apikey`, `$TAUTULLI_API_KEY`))" 
       priority: 100
       entryPoints:
         - websecure

appdata/traefik2/rules/hs/chain-authelia.yml

@@ -3,8 +3,7 @@ http:
     chain-authelia:
       chain:
         middlewares:
-          - middlewares-traefik-bouncer # leave this out if you are not using CrowdSec
+          # - middlewares-traefik-bouncer # leave this out if you are not using CrowdSec
           - middlewares-rate-limit
           - middlewares-secure-headers
-          - middlewares-authelia
-          #- middlewares-compress
+          - middlewares-authelia

appdata/traefik2/rules/hs/app-second-domain-passthrough.yml.example renamed to appdata/traefik2/rules/hs/domain-passthrough.yml.example

@@ -7,4 +7,3 @@ http:
           - middlewares-rate-limit
           - middlewares-secure-headers-wp
           - middlewares-authelia
-          - middlewares-compress

appdata/traefik2/rules/ws/chain-authelia-wp.yml

@@ -6,5 +6,4 @@ http:
           - middlewares-traefik-bouncer # leave this out if you are not using CrowdSec
           - middlewares-rate-limit
           - middlewares-secure-headers
-          - middlewares-authelia
-          - middlewares-compress
+          - middlewares-authelia

appdata/traefik2/rules/ws/chain-authelia.yml

@@ -6,5 +6,4 @@ http:
           - middlewares-traefik-bouncer # leave this out if you are not using CrowdSec
           - middlewares-rate-limit
           - middlewares-secure-headers
-          - middlewares-basic-auth
-          - middlewares-compress
+          - middlewares-basic-auth

appdata/traefik2/rules/ws/chain-basic-auth.yml

@@ -5,5 +5,4 @@ http:
         middlewares:
           - middlewares-traefik-bouncer # leave this out if you are not using CrowdSec
           - middlewares-rate-limit
-          - middlewares-secure-headers-wp
-          - middlewares-compress
+          - middlewares-secure-headers-wp

appdata/traefik2/rules/ws/chain-no-auth-crowdsec-wp.yml

@@ -6,4 +6,3 @@ http:
           # - middlewares-traefik-bouncer # leave this out if you are not using CrowdSec
           - middlewares-rate-limit
           - middlewares-secure-headers-wp
-          - middlewares-compress