xcad2k пре 4 година
родитељ
комит
5bf2c4af41

+ 24 - 0
docker-compose/influxdb/README.md

@@ -0,0 +1,24 @@
+# Installation
+
+TODO: ...
+
+# Best-Practices & Post-Installation
+
+## Disable HTTP
+
+It's not secure to expose InfluxDB via the HTTP protocol. Follow these steps to enable HTTPS only.
+
+### (Option 1): Upload custom certificates
+
+TODO: Not tested in Docker-Compose...
+
+- [ ] Run the container with tls parameters
+`influxd --tls-cert=/etc/ssl/cert.pem --tls-key=/etc/ssl/cert-key.pem`
+
+### (Option 2): Use a Reverse Proxy
+
+- [] Use a Reverse Proxy to securely expose administrative services.
+
+# Additional Referfences
+
+[Official InfluxDB Documentation](https://docs.influxdata.com/influxdb/v2.1/)

+ 24 - 0
docker-compose/influxdb/docker-compose.yml

@@ -0,0 +1,24 @@
+version: '3'
+
+services:
+  influxdb:
+    container_name: influxdb
+    image: influxdb:2.1-alpine
+    ports:
+      - '8086:8086'
+    volumes:
+      - influxdb-data:/var/lib/influxdb2
+    # # Automatically setup influxdb
+    # environment:
+    #   - DOCKER_INFLUXDB_INIT_MODE=setup
+    #   - DOCKER_INFLUXDB_INIT_USERNAME=my-user
+    #   - DOCKER_INFLUXDB_INIT_PASSWORD=my-password
+    #   - DOCKER_INFLUXDB_INIT_ORG=my-org
+    #   - DOCKER_INFLUXDB_INIT_BUCKET=my-bucket
+    # # (optional) Configure Data Retention
+    #   - DOCKER_INFLUXDB_INIT_RETENTION=1w
+    # # (optional) Admin Token
+    #   - DOCKER_INFLUXDB_INIT_ADMIN_TOKEN=my-super-secret-auth-token
+    # # (optional) Configure TLS
+    # TODO: no tested
+    # command: influxd --tls-cert=/etc/ssl/cert.pem --tls-key=/etc/ssl/cert-key.pem

+ 6 - 0
docker-compose/portainer/README.md

@@ -1,5 +1,7 @@
 # Installation
 # Installation
 
 
+TODO: ...
+
 ## Manage local environment
 ## Manage local environment
 
 
 Allows Portainer to manage the local Docker Environment
 Allows Portainer to manage the local Docker Environment
@@ -17,6 +19,10 @@ Storing Data in a `portainer-data` volume on docker
 ```
 ```
 # Best-Practices & Post-Installation
 # Best-Practices & Post-Installation
 
 
+## Disable HTTP
+
+It's not secure to expose Portainer via the HTTP protocol. Follow these steps to enable HTTPS only.
+
 ### (Option 1): Upload custom certificates
 ### (Option 1): Upload custom certificates
 
 
 - [ ] Upload your custom certificates
 - [ ] Upload your custom certificates

+ 17 - 0
docker-compose/prometheus/exporters/cadvisor/docker-compose.yml

@@ -0,0 +1,17 @@
+---
+version: '3'
+
+services:
+  cadvisor:
+    image: google/cadvisor:latest
+    container_name: cadvisor
+    # ports:
+    #   - "8080:8080"
+    volumes:
+      - /:/rootfs:ro
+      - /var/run:/var/run:ro
+      - /sys:/sys:ro
+      - /var/lib/docker/:/var/lib/docker:ro
+      - /dev/disk/:/dev/disk:ro
+    devices:
+      - /dev/kmsg

+ 13 - 0
docker-compose/prometheus/exporters/node_exporter/docker-compose.yml

@@ -0,0 +1,13 @@
+---
+version: '3.8'
+
+services:
+  node_exporter:
+    image: quay.io/prometheus/node-exporter:latest
+    container_name: node_exporter
+    command:
+      - '--path.rootfs=/host'
+    pid: host
+    restart: unless-stopped
+    volumes:
+      - '/:/host:ro,rslave'