Working lb with domain name and wg-easy.

flatcar/app/Makefile

@@ -0,0 +1,2 @@
+run:
+	sudo docker-compose up

flatcar/app/docker-compose.yaml

@@ -4,23 +4,62 @@ services:
     image: docker.io/caddy:2
     volumes:
       - /var/lb/caddy:/etc/caddy
+#      - ./lb/:/etc/caddy
+      - config:/config
+      - data:/data
     networks:
       - lb
     restart: unless-stopped
     ports:
       - "443:443"
       - "80:80"
-  thintz-com:
-    image: docker.io/caddy:2
-    volumes:
-      - /var/thintz-com/caddy:/etc/caddy
+  # thintz-com:
+  #   image: docker.io/caddy:2
+  #   volumes:
+  #     #- /var/thintz-com/caddy:/etc/caddy
+  #     - ./thintz-com/:/etc/caddy
+  #   networks:
+  #     - lb
+  #   restart: unless-stopped
+  # nginx:
+  #   image: nginx
+  #   restart: unless-stopped
+  #   networks:
+  #     - lb
+  wg-easy:
+    image: ghcr.io/wg-easy/wg-easy:15
+    environment:
+      - PORT=80
+    ports:
+      - "51820:51820/udp"
     networks:
-      - lb
-    restart: unless-stopped
-  nginx:
-    image: nginx
+      lb:
+      wg:
+        ipv4_address: 10.42.42.42
+#        ipv6_address: fdcc:ad94:bacf:61a3::2a
+    volumes:
+      - etc_wireguard:/etc/wireguard
+      - /lib/modules:/lib/modules:ro
     restart: unless-stopped
-    networks:
-      - lb
+    cap_add:
+      - NET_ADMIN
+      - SYS_MODULE
+    sysctls:
+      - net.ipv4.ip_forward=1
+      - net.ipv4.conf.all.src_valid_mark=1
+      - net.ipv6.conf.all.disable_ipv6=0
+      - net.ipv6.conf.all.forwarding=1
+      - net.ipv6.conf.default.forwarding=1
 networks:
   lb:
+  wg:
+    driver: bridge
+    ipam:
+      driver: default
+      config:
+        - subnet: 10.42.42.0/24
+        - subnet: fdcc:ad94:bacf:61a3::/64
+volumes:
+  config:
+  data:
+  etc_wireguard:

flatcar/app/lb/Caddyfile

@@ -1,4 +1,5 @@
-localhost
-
-reverse_proxy http://nginx
+nassella.thintz.com {
+  reverse_proxy http://wg-easy:80
+  # tls internal
   log
+}