Matthias Andreas Benkard | b382b10 | 2021-01-02 15:32:21 +0100 | [diff] [blame] | 1 | version: '2.1' |
| 2 | services: |
| 3 | |
| 4 | unbound-mailcow: |
| 5 | image: mailcow/unbound:1.12 |
| 6 | environment: |
| 7 | - TZ=${TZ} |
| 8 | volumes: |
| 9 | - ./data/hooks/unbound:/hooks:Z |
| 10 | - ./data/conf/unbound/unbound.conf:/etc/unbound/unbound.conf:ro,Z |
| 11 | restart: always |
| 12 | tty: true |
| 13 | networks: |
| 14 | mailcow-network: |
| 15 | ipv4_address: ${IPV4_NETWORK:-172.22.1}.254 |
| 16 | aliases: |
| 17 | - unbound |
| 18 | |
| 19 | mysql-mailcow: |
| 20 | image: mariadb:10.4 |
| 21 | depends_on: |
| 22 | - unbound-mailcow |
| 23 | stop_grace_period: 45s |
| 24 | volumes: |
| 25 | - mysql-vol-1:/var/lib/mysql/:Z |
| 26 | - mysql-socket-vol-1:/var/run/mysqld/:z |
| 27 | - ./data/conf/mysql/:/etc/mysql/conf.d/:ro,Z |
| 28 | environment: |
| 29 | - TZ=${TZ} |
| 30 | - MYSQL_ROOT_PASSWORD=${DBROOT} |
| 31 | - MYSQL_DATABASE=${DBNAME} |
| 32 | - MYSQL_USER=${DBUSER} |
| 33 | - MYSQL_PASSWORD=${DBPASS} |
| 34 | - MYSQL_INITDB_SKIP_TZINFO=1 |
| 35 | restart: always |
| 36 | ports: |
| 37 | - "${SQL_PORT:-127.0.0.1:13306}:3306" |
| 38 | networks: |
| 39 | mailcow-network: |
| 40 | aliases: |
| 41 | - mysql |
| 42 | |
| 43 | redis-mailcow: |
| 44 | image: redis:5-alpine |
| 45 | volumes: |
| 46 | - redis-vol-1:/data/:Z |
| 47 | restart: always |
| 48 | ports: |
| 49 | - "${REDIS_PORT:-127.0.0.1:7654}:6379" |
| 50 | environment: |
| 51 | - TZ=${TZ} |
| 52 | networks: |
| 53 | mailcow-network: |
| 54 | ipv4_address: ${IPV4_NETWORK:-172.22.1}.249 |
| 55 | aliases: |
| 56 | - redis |
| 57 | |
| 58 | clamd-mailcow: |
| 59 | image: mailcow/clamd:1.38 |
| 60 | restart: always |
| 61 | dns: |
| 62 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 63 | environment: |
| 64 | - TZ=${TZ} |
| 65 | - SKIP_CLAMD=${SKIP_CLAMD:-n} |
| 66 | volumes: |
| 67 | - ./data/conf/clamav/:/etc/clamav/:Z |
| 68 | networks: |
| 69 | mailcow-network: |
| 70 | aliases: |
| 71 | - clamd |
| 72 | |
| 73 | rspamd-mailcow: |
| 74 | image: mailcow/rspamd:1.75 |
| 75 | stop_grace_period: 30s |
| 76 | depends_on: |
| 77 | - dovecot-mailcow |
| 78 | environment: |
| 79 | - TZ=${TZ} |
| 80 | - IPV4_NETWORK=${IPV4_NETWORK:-172.22.1} |
| 81 | - IPV6_NETWORK=${IPV6_NETWORK:-fd4d:6169:6c63:6f77::/64} |
| 82 | - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-} |
| 83 | - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-} |
| 84 | volumes: |
| 85 | - ./data/hooks/rspamd:/hooks:Z |
| 86 | - ./data/conf/rspamd/custom/:/etc/rspamd/custom:z |
| 87 | - ./data/conf/rspamd/override.d/:/etc/rspamd/override.d:Z |
| 88 | - ./data/conf/rspamd/local.d/:/etc/rspamd/local.d:Z |
| 89 | - ./data/conf/rspamd/plugins.d/:/etc/rspamd/plugins.d:Z |
| 90 | - ./data/conf/rspamd/lua/:/etc/rspamd/lua/:ro,Z |
| 91 | - ./data/conf/rspamd/rspamd.conf.local:/etc/rspamd/rspamd.conf.local:Z |
| 92 | - ./data/conf/rspamd/rspamd.conf.override:/etc/rspamd/rspamd.conf.override:Z |
| 93 | - rspamd-vol-1:/var/lib/rspamd:z |
| 94 | restart: always |
| 95 | hostname: rspamd |
| 96 | dns: |
| 97 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 98 | networks: |
| 99 | mailcow-network: |
| 100 | aliases: |
| 101 | - rspamd |
| 102 | |
| 103 | php-fpm-mailcow: |
| 104 | image: mailcow/phpfpm:1.69 |
| 105 | command: "php-fpm -d date.timezone=${TZ} -d expose_php=0" |
| 106 | depends_on: |
| 107 | - redis-mailcow |
| 108 | volumes: |
| 109 | - ./data/hooks/phpfpm:/hooks:Z |
| 110 | - ./data/web:/web:rw,z |
| 111 | - ./data/conf/rspamd/dynmaps:/dynmaps:ro,z |
| 112 | - ./data/conf/rspamd/custom/:/rspamd_custom_maps:z |
| 113 | - rspamd-vol-1:/var/lib/rspamd:z |
| 114 | - mysql-socket-vol-1:/var/run/mysqld/:z |
| 115 | - ./data/conf/sogo/:/etc/sogo/:z |
| 116 | - ./data/conf/rspamd/meta_exporter:/meta_exporter:ro,z |
| 117 | - ./data/conf/phpfpm/sogo-sso/:/etc/sogo-sso/:z |
| 118 | - ./data/conf/phpfpm/php-fpm.d/pools.conf:/usr/local/etc/php-fpm.d/z-pools.conf:Z |
| 119 | - ./data/conf/phpfpm/php-conf.d/opcache-recommended.ini:/usr/local/etc/php/conf.d/opcache-recommended.ini:Z |
| 120 | - ./data/conf/phpfpm/php-conf.d/upload.ini:/usr/local/etc/php/conf.d/upload.ini:Z |
| 121 | - ./data/conf/phpfpm/php-conf.d/other.ini:/usr/local/etc/php/conf.d/zzz-other.ini:Z |
| 122 | - ./data/conf/dovecot/global_sieve_before:/global_sieve/before:z |
| 123 | - ./data/conf/dovecot/global_sieve_after:/global_sieve/after:z |
| 124 | - ./data/assets/templates:/tpls:z |
| 125 | dns: |
| 126 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 127 | environment: |
| 128 | - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-} |
| 129 | - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-} |
| 130 | - LOG_LINES=${LOG_LINES:-9999} |
| 131 | - TZ=${TZ} |
| 132 | - DBNAME=${DBNAME} |
| 133 | - DBUSER=${DBUSER} |
| 134 | - DBPASS=${DBPASS} |
| 135 | - MAILCOW_HOSTNAME=${MAILCOW_HOSTNAME} |
| 136 | - MAILCOW_PASS_SCHEME=${MAILCOW_PASS_SCHEME:-BLF-CRYPT} |
| 137 | - IMAP_PORT=${IMAP_PORT:-143} |
| 138 | - IMAPS_PORT=${IMAPS_PORT:-993} |
| 139 | - POP_PORT=${POP_PORT:-110} |
| 140 | - POPS_PORT=${POPS_PORT:-995} |
| 141 | - SIEVE_PORT=${SIEVE_PORT:-4190} |
| 142 | - IPV4_NETWORK=${IPV4_NETWORK:-172.22.1} |
| 143 | - IPV6_NETWORK=${IPV6_NETWORK:-fd4d:6169:6c63:6f77::/64} |
| 144 | - SUBMISSION_PORT=${SUBMISSION_PORT:-587} |
| 145 | - SMTPS_PORT=${SMTPS_PORT:-465} |
| 146 | - SMTP_PORT=${SMTP_PORT:-25} |
| 147 | - API_KEY=${API_KEY:-invalid} |
| 148 | - API_KEY_READ_ONLY=${API_KEY_READ_ONLY:-invalid} |
| 149 | - API_ALLOW_FROM=${API_ALLOW_FROM:-invalid} |
| 150 | - COMPOSE_PROJECT_NAME=${COMPOSE_PROJECT_NAME:-mailcow-dockerized} |
| 151 | - SKIP_SOLR=${SKIP_SOLR:-y} |
| 152 | - SKIP_CLAMD=${SKIP_CLAMD:-n} |
| 153 | - SKIP_SOGO=${SKIP_SOGO:-n} |
| 154 | - ALLOW_ADMIN_EMAIL_LOGIN=${ALLOW_ADMIN_EMAIL_LOGIN:-n} |
| 155 | - MASTER=${MASTER:-y} |
| 156 | restart: always |
| 157 | networks: |
| 158 | mailcow-network: |
| 159 | aliases: |
| 160 | - phpfpm |
| 161 | |
| 162 | sogo-mailcow: |
| 163 | image: mailcow/sogo:1.93 |
| 164 | environment: |
| 165 | - DBNAME=${DBNAME} |
| 166 | - DBUSER=${DBUSER} |
| 167 | - DBPASS=${DBPASS} |
| 168 | - TZ=${TZ} |
| 169 | - LOG_LINES=${LOG_LINES:-9999} |
| 170 | - MAILCOW_HOSTNAME=${MAILCOW_HOSTNAME} |
| 171 | - MAILCOW_PASS_SCHEME=${MAILCOW_PASS_SCHEME:-BLF-CRYPT} |
| 172 | - ACL_ANYONE=${ACL_ANYONE:-disallow} |
| 173 | - ALLOW_ADMIN_EMAIL_LOGIN=${ALLOW_ADMIN_EMAIL_LOGIN:-n} |
| 174 | - IPV4_NETWORK=${IPV4_NETWORK:-172.22.1} |
| 175 | - SOGO_EXPIRE_SESSION=${SOGO_EXPIRE_SESSION:-480} |
| 176 | - SKIP_SOGO=${SKIP_SOGO:-n} |
| 177 | - MASTER=${MASTER:-y} |
| 178 | - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-} |
| 179 | - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-} |
| 180 | dns: |
| 181 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 182 | volumes: |
| 183 | - ./data/conf/sogo/:/etc/sogo/:z |
| 184 | - ./data/web/inc/init_db.inc.php:/init_db.inc.php:Z |
| 185 | - ./data/conf/sogo/custom-sogo.js:/usr/lib/GNUstep/SOGo/WebServerResources/js/custom-sogo.js:z |
| 186 | - mysql-socket-vol-1:/var/run/mysqld/:z |
| 187 | - sogo-web-vol-1:/sogo_web:z |
| 188 | - sogo-userdata-backup-vol-1:/sogo_backup:Z |
| 189 | restart: always |
| 190 | networks: |
| 191 | mailcow-network: |
| 192 | ipv4_address: ${IPV4_NETWORK:-172.22.1}.248 |
| 193 | aliases: |
| 194 | - sogo |
| 195 | |
| 196 | dovecot-mailcow: |
| 197 | image: mailcow/dovecot:1.138 |
| 198 | depends_on: |
| 199 | - mysql-mailcow |
| 200 | dns: |
| 201 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 202 | cap_add: |
| 203 | - NET_BIND_SERVICE |
| 204 | volumes: |
| 205 | - ./data/hooks/dovecot:/hooks:Z |
| 206 | - ./data/conf/dovecot:/etc/dovecot:z |
| 207 | - ./data/assets/ssl:/etc/ssl/mail/:ro,z |
| 208 | - ./data/conf/sogo/:/etc/sogo/:z |
| 209 | - ./data/conf/phpfpm/sogo-sso/:/etc/phpfpm/:z |
| 210 | - vmail-vol-1:/var/vmail:Z |
| 211 | - vmail-index-vol-1:/var/vmail_index:Z |
| 212 | - crypt-vol-1:/mail_crypt/:z |
| 213 | - ./data/conf/rspamd/custom/:/etc/rspamd/custom:z |
| 214 | - ./data/assets/templates:/templates:z |
| 215 | - rspamd-vol-1:/var/lib/rspamd:z |
| 216 | - mysql-socket-vol-1:/var/run/mysqld/:z |
| 217 | environment: |
| 218 | - DOVECOT_MASTER_USER=${DOVECOT_MASTER_USER:-} |
| 219 | - DOVECOT_MASTER_PASS=${DOVECOT_MASTER_PASS:-} |
| 220 | - LOG_LINES=${LOG_LINES:-9999} |
| 221 | - DBNAME=${DBNAME} |
| 222 | - DBUSER=${DBUSER} |
| 223 | - DBPASS=${DBPASS} |
| 224 | - TZ=${TZ} |
| 225 | - MAILCOW_HOSTNAME=${MAILCOW_HOSTNAME} |
| 226 | - MAILCOW_PASS_SCHEME=${MAILCOW_PASS_SCHEME:-BLF-CRYPT} |
| 227 | - IPV4_NETWORK=${IPV4_NETWORK:-172.22.1} |
| 228 | - ALLOW_ADMIN_EMAIL_LOGIN=${ALLOW_ADMIN_EMAIL_LOGIN:-n} |
| 229 | - MAILDIR_GC_TIME=${MAILDIR_GC_TIME:-1440} |
| 230 | - ACL_ANYONE=${ACL_ANYONE:-disallow} |
| 231 | - SKIP_SOLR=${SKIP_SOLR:-y} |
| 232 | - MAILDIR_SUB=${MAILDIR_SUB:-} |
| 233 | - MASTER=${MASTER:-y} |
| 234 | - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-} |
| 235 | - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-} |
| 236 | - COMPOSE_PROJECT_NAME=${COMPOSE_PROJECT_NAME:-mailcow-dockerized} |
| 237 | ports: |
| 238 | - "${DOVEADM_PORT:-127.0.0.1:19991}:12345" |
| 239 | - "${IMAP_PORT:-143}:143" |
| 240 | - "${IMAPS_PORT:-993}:993" |
| 241 | - "${POP_PORT:-110}:110" |
| 242 | - "${POPS_PORT:-995}:995" |
| 243 | - "${SIEVE_PORT:-4190}:4190" |
| 244 | restart: always |
| 245 | tty: true |
| 246 | ulimits: |
| 247 | nproc: 65535 |
| 248 | nofile: |
| 249 | soft: 20000 |
| 250 | hard: 40000 |
| 251 | networks: |
| 252 | mailcow-network: |
| 253 | ipv4_address: ${IPV4_NETWORK:-172.22.1}.250 |
| 254 | aliases: |
| 255 | - dovecot |
| 256 | |
| 257 | postfix-mailcow: |
| 258 | image: mailcow/postfix:1.58 |
| 259 | depends_on: |
| 260 | - mysql-mailcow |
| 261 | volumes: |
| 262 | - ./data/hooks/postfix:/hooks:Z |
| 263 | - ./data/conf/postfix:/opt/postfix/conf:z |
| 264 | - ./data/assets/ssl:/etc/ssl/mail/:ro,z |
| 265 | - postfix-vol-1:/var/spool/postfix:z |
| 266 | - crypt-vol-1:/var/lib/zeyple:z |
| 267 | - rspamd-vol-1:/var/lib/rspamd:z |
| 268 | - mysql-socket-vol-1:/var/run/mysqld/:z |
| 269 | environment: |
| 270 | - LOG_LINES=${LOG_LINES:-9999} |
| 271 | - TZ=${TZ} |
| 272 | - DBNAME=${DBNAME} |
| 273 | - DBUSER=${DBUSER} |
| 274 | - DBPASS=${DBPASS} |
| 275 | - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-} |
| 276 | - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-} |
| 277 | - MAILCOW_HOSTNAME=${MAILCOW_HOSTNAME} |
| 278 | cap_add: |
| 279 | - NET_BIND_SERVICE |
| 280 | ports: |
| 281 | - "${SMTP_PORT:-25}:25" |
| 282 | - "${SMTPS_PORT:-465}:465" |
| 283 | - "${SUBMISSION_PORT:-587}:587" |
| 284 | restart: always |
| 285 | dns: |
| 286 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 287 | networks: |
| 288 | mailcow-network: |
| 289 | aliases: |
| 290 | - postfix |
| 291 | |
| 292 | memcached-mailcow: |
| 293 | image: memcached:alpine |
| 294 | restart: always |
| 295 | environment: |
| 296 | - TZ=${TZ} |
| 297 | networks: |
| 298 | mailcow-network: |
| 299 | aliases: |
| 300 | - memcached |
| 301 | |
| 302 | nginx-mailcow: |
| 303 | depends_on: |
| 304 | - sogo-mailcow |
| 305 | - php-fpm-mailcow |
| 306 | - redis-mailcow |
| 307 | image: nginx:mainline-alpine |
| 308 | dns: |
| 309 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 310 | command: /bin/sh -c "envsubst < /etc/nginx/conf.d/templates/listen_plain.template > /etc/nginx/conf.d/listen_plain.active && |
| 311 | envsubst < /etc/nginx/conf.d/templates/listen_ssl.template > /etc/nginx/conf.d/listen_ssl.active && |
| 312 | envsubst < /etc/nginx/conf.d/templates/server_name.template > /etc/nginx/conf.d/server_name.active && |
| 313 | envsubst < /etc/nginx/conf.d/templates/sogo.template > /etc/nginx/conf.d/sogo.active && |
| 314 | . /etc/nginx/conf.d/templates/sogo.auth_request.template.sh > /etc/nginx/conf.d/sogo_proxy_auth.active && |
| 315 | . /etc/nginx/conf.d/templates/sites.template.sh > /etc/nginx/conf.d/sites.active && |
| 316 | . /etc/nginx/conf.d/templates/sogo_eas.template.sh > /etc/nginx/conf.d/sogo_eas.active && |
| 317 | nginx -qt && |
| 318 | until ping phpfpm -c1 > /dev/null; do sleep 1; done && |
| 319 | until ping sogo -c1 > /dev/null; do sleep 1; done && |
| 320 | until ping redis -c1 > /dev/null; do sleep 1; done && |
| 321 | until ping rspamd -c1 > /dev/null; do sleep 1; done && |
| 322 | exec nginx -g 'daemon off;'" |
| 323 | environment: |
| 324 | - HTTPS_PORT=${HTTPS_PORT:-443} |
| 325 | - HTTP_PORT=${HTTP_PORT:-80} |
| 326 | - MAILCOW_HOSTNAME=${MAILCOW_HOSTNAME} |
| 327 | - IPV4_NETWORK=${IPV4_NETWORK:-172.22.1} |
| 328 | - TZ=${TZ} |
| 329 | - SKIP_SOGO=${SKIP_SOGO:-n} |
| 330 | - ALLOW_ADMIN_EMAIL_LOGIN=${ALLOW_ADMIN_EMAIL_LOGIN:-n} |
| 331 | volumes: |
| 332 | - ./data/web:/web:ro,z |
| 333 | - ./data/conf/rspamd/dynmaps:/dynmaps:ro,z |
| 334 | - ./data/assets/ssl/:/etc/ssl/mail/:ro,z |
| 335 | - ./data/conf/nginx/:/etc/nginx/conf.d/:rw,Z |
| 336 | - ./data/conf/rspamd/meta_exporter:/meta_exporter:ro,z |
| 337 | - sogo-web-vol-1:/usr/lib/GNUstep/SOGo/:z |
| 338 | ports: |
| 339 | - "${HTTPS_BIND:-0.0.0.0}:${HTTPS_PORT:-443}:${HTTPS_PORT:-443}" |
| 340 | - "${HTTP_BIND:-0.0.0.0}:${HTTP_PORT:-80}:${HTTP_PORT:-80}" |
| 341 | restart: always |
| 342 | networks: |
| 343 | mailcow-network: |
| 344 | aliases: |
| 345 | - nginx |
| 346 | |
| 347 | acme-mailcow: |
| 348 | depends_on: |
| 349 | - nginx-mailcow |
| 350 | image: mailcow/acme:1.76 |
| 351 | dns: |
| 352 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 353 | environment: |
| 354 | - LOG_LINES=${LOG_LINES:-9999} |
| 355 | - ADDITIONAL_SAN=${ADDITIONAL_SAN} |
| 356 | - MAILCOW_HOSTNAME=${MAILCOW_HOSTNAME} |
| 357 | - DBNAME=${DBNAME} |
| 358 | - DBUSER=${DBUSER} |
| 359 | - DBPASS=${DBPASS} |
| 360 | - SKIP_LETS_ENCRYPT=${SKIP_LETS_ENCRYPT:-n} |
| 361 | - COMPOSE_PROJECT_NAME=${COMPOSE_PROJECT_NAME:-mailcow-dockerized} |
| 362 | - DIRECTORY_URL=${DIRECTORY_URL:-} |
| 363 | - ENABLE_SSL_SNI=${ENABLE_SSL_SNI:-n} |
| 364 | - SKIP_IP_CHECK=${SKIP_IP_CHECK:-n} |
| 365 | - SKIP_HTTP_VERIFICATION=${SKIP_HTTP_VERIFICATION:-n} |
| 366 | - ONLY_MAILCOW_HOSTNAME=${ONLY_MAILCOW_HOSTNAME:-n} |
| 367 | - LE_STAGING=${LE_STAGING:-n} |
| 368 | - TZ=${TZ} |
| 369 | - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-} |
| 370 | - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-} |
| 371 | - SNAT_TO_SOURCE=${SNAT_TO_SOURCE:-n} |
| 372 | - SNAT6_TO_SOURCE=${SNAT6_TO_SOURCE:-n} |
| 373 | volumes: |
| 374 | - ./data/web/.well-known/acme-challenge:/var/www/acme:rw,z |
| 375 | - ./data/assets/ssl:/var/lib/acme/:rw,z |
| 376 | - ./data/assets/ssl-example:/var/lib/ssl-example/:ro,Z |
| 377 | - mysql-socket-vol-1:/var/run/mysqld/:z |
| 378 | restart: always |
| 379 | networks: |
| 380 | mailcow-network: |
| 381 | aliases: |
| 382 | - acme |
| 383 | |
| 384 | netfilter-mailcow: |
| 385 | image: mailcow/netfilter:1.38 |
| 386 | stop_grace_period: 30s |
| 387 | depends_on: |
| 388 | - dovecot-mailcow |
| 389 | - postfix-mailcow |
| 390 | - sogo-mailcow |
| 391 | - php-fpm-mailcow |
| 392 | - redis-mailcow |
| 393 | restart: always |
| 394 | privileged: true |
| 395 | environment: |
| 396 | - TZ=${TZ} |
| 397 | - IPV4_NETWORK=${IPV4_NETWORK:-172.22.1} |
| 398 | - IPV6_NETWORK=${IPV6_NETWORK:-fd4d:6169:6c63:6f77::/64} |
| 399 | - SNAT_TO_SOURCE=${SNAT_TO_SOURCE:-n} |
| 400 | - SNAT6_TO_SOURCE=${SNAT6_TO_SOURCE:-n} |
| 401 | - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-} |
| 402 | - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-} |
| 403 | network_mode: "host" |
| 404 | volumes: |
| 405 | - /lib/modules:/lib/modules:ro |
| 406 | |
| 407 | watchdog-mailcow: |
| 408 | image: mailcow/watchdog:1.86 |
| 409 | # Debug |
| 410 | #command: /watchdog.sh |
| 411 | dns: |
| 412 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 413 | volumes: |
| 414 | - rspamd-vol-1:/var/lib/rspamd:z |
| 415 | - mysql-socket-vol-1:/var/run/mysqld/:z |
| 416 | - postfix-vol-1:/var/spool/postfix:z |
| 417 | - ./data/assets/ssl:/etc/ssl/mail/:ro,z |
| 418 | restart: always |
| 419 | environment: |
| 420 | - IPV6_NETWORK=${IPV6_NETWORK:-fd4d:6169:6c63:6f77::/64} |
| 421 | - LOG_LINES=${LOG_LINES:-9999} |
| 422 | - TZ=${TZ} |
| 423 | - DBNAME=${DBNAME} |
| 424 | - DBUSER=${DBUSER} |
| 425 | - DBPASS=${DBPASS} |
| 426 | - DBROOT=${DBROOT} |
| 427 | - USE_WATCHDOG=${USE_WATCHDOG:-n} |
| 428 | - WATCHDOG_NOTIFY_EMAIL=${WATCHDOG_NOTIFY_EMAIL} |
| 429 | - WATCHDOG_NOTIFY_BAN=${WATCHDOG_NOTIFY_BAN:-y} |
| 430 | - WATCHDOG_EXTERNAL_CHECKS=${WATCHDOG_EXTERNAL_CHECKS:-n} |
| 431 | - WATCHDOG_MYSQL_REPLICATION_CHECKS=${WATCHDOG_MYSQL_REPLICATION_CHECKS:-n} |
| 432 | - MAILCOW_HOSTNAME=${MAILCOW_HOSTNAME} |
| 433 | - COMPOSE_PROJECT_NAME=${COMPOSE_PROJECT_NAME:-mailcow-dockerized} |
| 434 | - IPV4_NETWORK=${IPV4_NETWORK:-172.22.1} |
| 435 | - IP_BY_DOCKER_API=${IP_BY_DOCKER_API:-0} |
| 436 | - CHECK_UNBOUND=${CHECK_UNBOUND:-1} |
| 437 | - SKIP_CLAMD=${SKIP_CLAMD:-n} |
| 438 | - SKIP_LETS_ENCRYPT=${SKIP_LETS_ENCRYPT:-n} |
| 439 | - SKIP_SOGO=${SKIP_SOGO:-n} |
| 440 | - HTTPS_PORT=${HTTPS_PORT:-443} |
| 441 | - REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-} |
| 442 | - REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-} |
| 443 | - EXTERNAL_CHECKS_THRESHOLD=${EXTERNAL_CHECKS_THRESHOLD:-1} |
| 444 | - NGINX_THRESHOLD=${NGINX_THRESHOLD:-5} |
| 445 | - UNBOUND_THRESHOLD=${UNBOUND_THRESHOLD:-5} |
| 446 | - REDIS_THRESHOLD=${REDIS_THRESHOLD:-5} |
| 447 | - MYSQL_THRESHOLD=${MYSQL_THRESHOLD:-5} |
| 448 | - MYSQL_REPLICATION_THRESHOLD=${MYSQL_REPLICATION_THRESHOLD:-1} |
| 449 | - SOGO_THRESHOLD=${SOGO_THRESHOLD:-3} |
| 450 | - POSTFIX_THRESHOLD=${POSTFIX_THRESHOLD:-8} |
| 451 | - CLAMD_THRESHOLD=${CLAMD_THRESHOLD:-15} |
| 452 | - DOVECOT_THRESHOLD=${DOVECOT_THRESHOLD:-12} |
| 453 | - DOVECOT_REPL_THRESHOLD=${DOVECOT_REPL_THRESHOLD:-20} |
| 454 | - PHPFPM_THRESHOLD=${PHPFPM_THRESHOLD:-5} |
| 455 | - RATELIMIT_THRESHOLD=${RATELIMIT_THRESHOLD:-1} |
| 456 | - FAIL2BAN_THRESHOLD=${FAIL2BAN_THRESHOLD:-1} |
| 457 | - ACME_THRESHOLD=${ACME_THRESHOLD:-1} |
| 458 | - IPV6NAT_THRESHOLD=${IPV6NAT_THRESHOLD:-1} |
| 459 | - RSPAMD_THRESHOLD=${RSPAMD_THRESHOLD:-5} |
| 460 | - OLEFY_THRESHOLD=${OLEFY_THRESHOLD:-5} |
| 461 | - MAILQ_THRESHOLD=${MAILQ_THRESHOLD:-20} |
| 462 | - MAILQ_CRIT=${MAILQ_CRIT:-30} |
| 463 | networks: |
| 464 | mailcow-network: |
| 465 | aliases: |
| 466 | - watchdog |
| 467 | |
| 468 | dockerapi-mailcow: |
| 469 | image: mailcow/dockerapi:1.37 |
| 470 | security_opt: |
| 471 | - label=disable |
| 472 | restart: always |
| 473 | oom_kill_disable: true |
| 474 | dns: |
| 475 | - ${IPV4_NETWORK:-172.22.1}.254 |
| 476 | environment: |
| 477 | - DBROOT=${DBROOT} |
| 478 | - TZ=${TZ} |
| 479 | volumes: |
| 480 | - /var/run/docker.sock:/var/run/docker.sock:ro |
| 481 | networks: |
| 482 | mailcow-network: |
| 483 | aliases: |
| 484 | - dockerapi |
| 485 | |
| 486 | solr-mailcow: |
| 487 | image: mailcow/solr:1.7 |
| 488 | restart: always |
| 489 | volumes: |
| 490 | - solr-vol-1:/opt/solr/server/solr/dovecot-fts/data:Z |
| 491 | ports: |
| 492 | - "${SOLR_PORT:-127.0.0.1:18983}:8983" |
| 493 | environment: |
| 494 | - TZ=${TZ} |
| 495 | - SOLR_HEAP=${SOLR_HEAP:-1024} |
| 496 | - SKIP_SOLR=${SKIP_SOLR:-y} |
| 497 | networks: |
| 498 | mailcow-network: |
| 499 | aliases: |
| 500 | - solr |
| 501 | |
| 502 | olefy-mailcow: |
| 503 | image: mailcow/olefy:1.5 |
| 504 | restart: always |
| 505 | environment: |
| 506 | - TZ=${TZ} |
| 507 | - OLEFY_BINDADDRESS=0.0.0.0 |
| 508 | - OLEFY_BINDPORT=10055 |
| 509 | - OLEFY_TMPDIR=/tmp |
| 510 | - OLEFY_PYTHON_PATH=/usr/bin/python3 |
| 511 | - OLEFY_OLEVBA_PATH=/usr/bin/olevba3 |
| 512 | - OLEFY_LOGLVL=20 |
| 513 | - OLEFY_MINLENGTH=500 |
| 514 | - OLEFY_DEL_TMP=1 |
| 515 | networks: |
| 516 | mailcow-network: |
| 517 | aliases: |
| 518 | - olefy |
| 519 | |
| 520 | ipv6nat-mailcow: |
| 521 | depends_on: |
| 522 | - unbound-mailcow |
| 523 | - mysql-mailcow |
| 524 | - redis-mailcow |
| 525 | - clamd-mailcow |
| 526 | - rspamd-mailcow |
| 527 | - php-fpm-mailcow |
| 528 | - sogo-mailcow |
| 529 | - dovecot-mailcow |
| 530 | - postfix-mailcow |
| 531 | - memcached-mailcow |
| 532 | - nginx-mailcow |
| 533 | - acme-mailcow |
| 534 | - netfilter-mailcow |
| 535 | - watchdog-mailcow |
| 536 | - dockerapi-mailcow |
| 537 | - solr-mailcow |
| 538 | environment: |
| 539 | - TZ=${TZ} |
| 540 | image: robbertkl/ipv6nat |
| 541 | security_opt: |
| 542 | - label=disable |
| 543 | restart: always |
| 544 | privileged: true |
| 545 | network_mode: "host" |
| 546 | volumes: |
| 547 | - /var/run/docker.sock:/var/run/docker.sock:ro |
| 548 | - /lib/modules:/lib/modules:ro |
| 549 | |
| 550 | networks: |
| 551 | mailcow-network: |
| 552 | driver: bridge |
| 553 | driver_opts: |
| 554 | com.docker.network.bridge.name: br-mailcow |
Matthias Andreas Benkard | c55bfae | 2021-01-02 07:35:21 +0100 | [diff] [blame^] | 555 | enable_ipv6: false |
Matthias Andreas Benkard | b382b10 | 2021-01-02 15:32:21 +0100 | [diff] [blame] | 556 | ipam: |
| 557 | driver: default |
| 558 | config: |
| 559 | - subnet: ${IPV4_NETWORK:-172.22.1}.0/24 |
| 560 | - subnet: ${IPV6_NETWORK:-fd4d:6169:6c63:6f77::/64} |
| 561 | |
| 562 | volumes: |
| 563 | vmail-vol-1: |
| 564 | vmail-index-vol-1: |
| 565 | mysql-vol-1: |
| 566 | mysql-socket-vol-1: |
| 567 | redis-vol-1: |
| 568 | rspamd-vol-1: |
| 569 | solr-vol-1: |
| 570 | postfix-vol-1: |
| 571 | crypt-vol-1: |
| 572 | sogo-web-vol-1: |
| 573 | sogo-userdata-backup-vol-1: |