diff --git a/caddy/Caddyfile b/caddy/Caddyfile index 56b74db..97916e8 100644 --- a/caddy/Caddyfile +++ b/caddy/Caddyfile @@ -18,13 +18,13 @@ # Public — only webhook endpoint, no UI n8n.sauravdhakal.com.np { - reverse_proxy n8n:5678 { + reverse_proxy localhost:5678 { # Only allow webhook paths publicly header_up Host {host} } @public path /webhook/* /webhook-test/* handle @public { - reverse_proxy n8n:5678 + reverse_proxy localhost:5678 } handle { abort # block everything else (UI, API, etc) @@ -34,7 +34,7 @@ n8n.sauravdhakal.com.np { # Private — full n8n UI through VPN n8n-admin.sauravdhakal.com.np { bind 100.81.85.182 - reverse_proxy n8n:5678 + reverse_proxy localhost:5678 } # ----------------------------------------------- @@ -44,20 +44,20 @@ n8n-admin.sauravdhakal.com.np { vault.sauravdhakal.com.np { bind 100.81.85.182 - reverse_proxy vaultwarden:80 + reverse_proxy localhost:8080 } actual.sauravdhakal.com.np { bind 100.81.85.182 - reverse_proxy actual:5006 + reverse_proxy localhost:8081 } immich.sauravdhakal.com.np { bind 100.81.85.182 - reverse_proxy immich-server:2283 + reverse_proxy immich-server:8082 } filebrowser.sauravdhakal.com.np { bind 100.81.85.182 - reverse_proxy filebrowser:80 + reverse_proxy filebrowser:8083 } diff --git a/services/caddy.yml b/services/caddy.yml index 33be02e..d6c874e 100644 --- a/services/caddy.yml +++ b/services/caddy.yml @@ -2,18 +2,13 @@ services: caddy: build: ../caddy restart: unless-stopped - ports: - - "80:80" - - "443:443" - - "100.81.85.182:443:443" # VPN interface for private services environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} volumes: - ../caddy/Caddyfile:/etc/caddy/Caddyfile - ../caddy/data:/data - ../caddy/config:/config - networks: - - caddy_net + network_mode: host # Caddy sees ALL host interfaces including Netbird networks: caddy_net: