添加辅助自签名端口

.gitignore

@@ -1 +1,2 @@
 .env
+traefik/gen

README

@@ -1 +0,0 @@
-这里是本机 http 网关容器的配置目录，使用了 traefik 作为网关组件，可以自动化证书申请与更新

README.md

@@ -0,0 +1,27 @@
+# Ingress
+
+这里是本机 http 网关容器的配置，使用了 traefik 作为网关组件，可以自动化证书申请与更新
+
+## 部署项目
+
+1. 生成自签名证书
+
+```bash
+mkdir -p traefik/gen/certs
+openssl req -x509 -nodes -days 365 -newkey rsa:2048 \
+  -keyout traefik/gen/certs/local.key -out traefik/gen/certs/local.crt \
+  -subj "/CN=*.lanhuip.com"
+```
+
+2. 创建 acme.json 文件
+
+```bash
+touch traefik/gen/acme.json
+chmod 600 traefik/gen/acme.json
+```
+
+3. 启动项目
+
+```bash
+docker-compose up -d
+```

docker-compose.yaml

@@ -11,11 +11,19 @@ services:
       - "--providers.docker=true"
       - "--providers.docker.exposedbydefault=false"
       - "--providers.docker.network=expose"
+      - "--providers.file.directory=/configs"
+
       - "--entrypoints.web.address=:80"
       - "--entrypoints.web.http.redirections.entrypoint.to=websecure"
       - "--entrypoints.websecure.address=:443"
       - "--entrypoints.websecure.http.tls=true"
       - "--entrypoints.websecure.http.tls.certresolver=letsencrypt"
+
+      - "--entrypoints.webdev.address=:880"
+      - "--entrypoints.webdev.http.redirections.entrypoint.to=websecuredev"
+      - "--entrypoints.websecuredev.address=:8554"
+      - "--entrypoints.websecuredev.http.tls=true"
+
       - "--certificatesresolvers.letsencrypt.acme.email=acme@lanhuip.com"
       - "--certificatesresolvers.letsencrypt.acme.httpchallenge=true"
       - "--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web"
@@ -29,8 +37,13 @@ services:
     ports:
       - 80:80
       - 443:443
+      - 880:880
+      - 8554:8554
     volumes:
       - /var/run/docker.sock:/var/run/docker.sock:ro
+      - ./traefik/configs:/configs:ro
+      - ./traefik/gen/certs:/certs:ro
+      - ./traefik/gen/acme.json:/acme.json
 
 networks:
   expose:

traefik/configs/tls.yaml

@@ -0,0 +1,4 @@
+tls:
+  certificates:
+    - certFile: /certs/local.crt
+      keyFile: /certs/local.key