-
Notifications
You must be signed in to change notification settings - Fork 0
/
docker-compose.yml
429 lines (417 loc) · 15.8 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
#volumes:
# Configuration example for External HD #1
# (credentials stored in .env file)
#external-hd1:
# driver: local
# driver_opts:
# type: cifs
# o: username=${EXTERNAL_HD1_USERNAME},password=${EXTERNAL_HD1_PASSWORD},uid=${USER_PUID},gid=${USER_PGID},iocharset=utf8,file_mode=0777,dir_mode=0777
# device: "${EXTERNAL_HD1_PATH}"
services:
# ==========================================================================
# Transmission-OpenVPN service
# => torrent server secured by VPN connection
transmission-openvpn:
image: haugene/transmission-openvpn:latest
container_name: transmission-openvpn
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
cap_add:
# Admin credentials for docker container
- NET_ADMIN
environment:
- CREATE_TUN_DEVICE=true
# OpenVPN settings
- OPENVPN_PROVIDER=surfshark
# OPENVPN_CONFIG: comma separated list allowed, with random selection at startup
- OPENVPN_CONFIG=fr-par.prod.surfshark.com_udp
- OPENVPN_OPTS=--mute-replay-warnings --inactive 3600 --ping 10 --ping-exit 60
# OpenVPN credentials to connect to VPN (credentials stored in .env file)
- OPENVPN_USERNAME=${OPENVPN_USERNAME}
- OPENVPN_PASSWORD=${OPENVPN_PASSWORD}
# Transmission dirs
- TRANSMISSION_HOME=/data/transmission-home
- TRANSMISSION_DOWNLOAD_DIR=/storage/complete
- TRANSMISSION_INCOMPLETE_DIR_ENABLED=false
- TRANSMISSION_INCOMPLETE_DIR=/storage/incomplete
- TRANSMISSION_WATCH_DIR_ENABLED=true
- TRANSMISSION_WATCH_DIR=/storage/watch
# Transmission download / uploads settings
- TRANSMISSION_DOWNLOAD_QUEUE_ENABLED=true
- TRANSMISSION_DOWNLOAD_QUEUE_SIZE=50
- TRANSMISSION_SPEED_LIMIT_UP_ENABLED=true
- TRANSMISSION_SPEED_LIMIT_UP=1000
# Transmission Web UI: kettu, combustion, transmission-web-control, flood-for-transmission
- TRANSMISSION_WEB_UI=flood-for-transmission
# Enable HTTP proxy
- WEBPROXY_ENABLED=true
- WEBPROXY_PORT=8789
# Firewall and routes (block non VPN traffic)
- DROP_DEFAULT_ROUTE=true
# Firewall not working anymore with docker image v3 / new PIA servers ?
# - ENABLE_UFW=true
# - UFW_ALLOW_GW_NET=true
# - UFW_EXTRA_PORTS=
# - UFW_DISABLE_IPTABLES_REJECT=false
# Network settings
- LOCAL_NETWORK=192.168.0.0/24
# User from docker host to impersonate in container (configured in .env file)
- PUID=${USER_PUID}
- PGID=${USER_PGID}
volumes:
# Sync time with docker host
- /etc/localtime:/etc/localtime:ro
# Configuration dir
- /share/Download/tools/transmission:/data/transmission-home
# Storage dirs
- /share/Download/incomplete:/storage/incomplete
- /share/Download/complete:/storage/complete
- /share/Download/watch:/storage/watch
ports:
# Transmission Web UI port
- 9091:9091
# HTTP Proxy port
- 8789:8789
# JOAL Web UI Port
- 9092:9092
restart: always
# ==========================================================================
# JOAL service
# => Ratio Master clone with web UI to boost torrent seed ratio
joal:
image: anthonyraymond/joal:latest
container_name: joal
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
depends_on:
- transmission-openvpn
volumes:
# Configuration dir
- /share/Download/tools/joal:/data
# Use network from transmission-openvpn container to ensure traffic goes through VPN tunnel
network_mode: "service:transmission-openvpn"
# User from docker host to impersonate in container (configured in .env file)
user: "${USER_PUID}:${USER_PGID}"
restart: always
command: "--joal-conf=/data --spring.main.web-environment=true --server.port=9092 --joal.ui.path.prefix=${JOAL_PATH_PREFIX} --joal.ui.secret-token=${JOAL_SECRET_TOKEN}"
# ==========================================================================
# Medusa service
# => TV shows manager and auto-downloader, connected to torrent server
medusa:
image: linuxserver/medusa:latest
container_name: medusa
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
dns:
# Public DNS
- 8.8.8.8
- 8.8.4.4
environment:
# User from docker host to impersonate in container (configured in .env file)
- PUID=${USER_PUID}
- PGID=${USER_PGID}
volumes:
# Sync time with docker host
- /etc/localtime:/etc/localtime:ro
# Configuration dir
- /share/Download/tools/medusa:/config
# Storage dirs
- /share/Download/complete/medusa:/storage/complete/medusa
- /share/Multimedia/Series:/storage/Series
- /share/Multimedia/Enfants/Series:/storage/Enfants/Series
#- external-hd1:/storage/_hd1
ports:
# Medusa Web UI port
- 8081:8081
restart: always
# ==========================================================================
# Jackett
# => Proxy server for Medusa, to provide custom torrent providers
#
# ------------------------------------
# Manual configuration in Medusa Web UI to use Jackett:
# > Reference: https://github.com/pymedusa/Medusa/wiki/Using-Jackett-with-Medusa
# - Settings > Search Providers > Configure Custom Torznab Providers
# - Provider name: ...
# - Site Url: http://jackett:9117/api/v2.0/indexers/... <copy end of URL from Jackett Torznab Feed link>
# - Api key: <copy API Key from Jackett>
# ------------------------------------
jackett:
image: linuxserver/jackett:latest
container_name: jackett
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
dns:
# Public DNS
- 8.8.8.8
- 8.8.4.4
environment:
# User from docker host to impersonate in container (configured in .env file)
- PUID=${USER_PUID}
- PGID=${USER_PGID}
# Allow Jackett to update inside of the container (currently recommended by Jackett and enabled by default)
- AUTO_UPDATE=true
volumes:
# Sync time with docker host
- /etc/localtime:/etc/localtime:ro
# Configuration dir
- /share/Download/tools/jackett:/config
# Path to torrent blackhole
- /path/to/blackhole:/storage/watch
ports:
# Jackett Web UI port
- 9117:9117
restart: always
# ==========================================================================
# Radarr service
# => Movies manager and auto-downloader, connected to torrent server
#
# ------------------------------------
# Manual configuration in Web UI:
# - Settings > Media Management > Root Folders:
# [+] /storage/Films
# [+] /storage/Enfants/Films
# - Settings > Download Clients > [+] Transmission:
# - Host: transmission-openvpn
# - Port: 9091
# - Category: radarr
# - Settings > Indexers > choose your indexers to download torrents from ...
# - Settings > General > Proxy: if you want to use HTTP proxy to VPN tunnel
# - Use Proxy: X
# - Proxy Type: HTTP(S)
# - Host: transmission-openvpn
# - Port: 8789
# ------------------------------------
radarr:
image: linuxserver/radarr:latest
container_name: radarr
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
dns:
# Public DNS
- 8.8.8.8
- 8.8.4.4
environment:
# User from docker host to impersonate in container (configured in .env file)
- PUID=${USER_PUID}
- PGID=${USER_PGID}
volumes:
# Sync time with docker host
- /etc/localtime:/etc/localtime:ro
# Configuration dir
- /share/Download/tools/radarr:/config
# Storage dirs
- /share/Download/complete/radarr:/storage/complete/radarr
- /share/Multimedia/Films:/storage/Films
- /share/Multimedia/Enfants/Films:/storage/Enfants/Films
#- external-hd1:/storage/_hd1
ports:
# Radarr Web UI port
- 7878:7878
restart: always
# ==========================================================================
# Bazaar service
# => Companion application to Radarr that manages and downloads subtitles
bazarr:
image: linuxserver/bazarr:latest
container_name: bazarr
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
dns:
# Public DNS
- 8.8.8.8
- 8.8.4.4
environment:
# User from docker host to impersonate in container (configured in .env file)
- PUID=${USER_PUID}
- PGID=${USER_PGID}
volumes:
# Sync time with docker host
- /etc/localtime:/etc/localtime:ro
# Configuration dir
- /share/Download/tools/bazarr:/config
# Storage dirs
- /share/Multimedia/Films:/storage/Films
- /share/Multimedia/Enfants/Films:/storage/Enfants/Films
- /share/Multimedia/Series:/storage/Series
- /share/Multimedia/Enfants/Series:/storage/Enfants/Series
#- external-hd1:/storage/_hd1
ports:
# Bazaar Web UI port
- 6767:6767
restart: always
# ==========================================================================
# Kodi MariaDB service
# => MariaDB for Kodi configuration sharing between devices
#
# ------------------------------------
# See tutorial for Kodi setup:
# https://kodi.wiki/view/MySQL/Setting_up_Kodi
#
# Use this configuration for '':
# <advancedsettings>
# <videodatabase>
# <type>mysql</type>
# <host>***DEVICE IP***</host>
# <port>3636</port>
# <user>${KODI_DB_USER}</user>
# <pass>${KODI_DB_PASSWORD}</pass>
# </videodatabase>
# <musicdatabase>
# <type>mysql</type>
# <host>***DEVICE IP***</host>
# <port>3636</port>
# <user>${KODI_DB_USER}</user>
# <pass>${KODI_DB_PASSWORD}</pass>
# </musicdatabase>
# <videolibrary>
# <importwatchedstate>true</importwatchedstate>
# <importresumepoint>true</importresumepoint>
# </videolibrary>
# </advancedsettings>
# ------------------------------------
kodi-mariadb:
image: linuxserver/mariadb:latest
container_name: kodi-mariadb
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
environment:
# User from docker host to impersonate in container (configured in .env file)
- PUID=${USER_PUID}
- PGID=${USER_PGID}
# Temporary MySQL DB name (deleted after initial install)
- MYSQL_DATABASE=tempdb
# MySQL root password (not used after initial install)
- MYSQL_ROOT_PASSWORD=${KODI_DB_ROOT_PASSWORD}
# MySQL user to configure in Kodi to connect to MySQL (Kodi creates databases automatically)
- MYSQL_USER=${KODI_DB_USER}
- MYSQL_PASSWORD=${KODI_DB_PASSWORD}
volumes:
# Configuration dir (must contain 'initdb.d/kodi.sql' script for initial install)
- /share/Download/tools/kodi-mariadb:/config
ports:
# MariaDB port to configure in Kodi to connect to MySQL
- 3636:3306
restart: always
# ==========================================================================
# nginx service
# => Reverse proxy, used to expose services as HTTPS with SSL certificates and basic authentication
nginx:
image: nginx:latest
container_name: nginx
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
dns:
# Public DNS
- 8.8.8.8
- 8.8.4.4
volumes:
# Sync time with docker host
- /etc/localtime:/etc/localtime:ro
# Configuration file
- /share/Download/tools/nginx/nginx.conf:/etc/nginx/nginx.conf:ro
# Password file (use 'configurator' docker container to generate)
- /share/Download/tools/nginx/passwords:/etc/nginx/passwords:ro
# Logs dir
- /share/Download/tools/nginx/logs:/var/log/nginx
# SSL certificates
- /share/Download/tools/ssl/ahuh.crt:/etc/nginx/certs/ssl.crt:ro
- /share/Download/tools/ssl/ahuh.key:/etc/nginx/certs/ssl.key:ro
ports:
# Radarr external port
- 44478:44478
# Medusa external port
- 44481:44481
# Transmission external port
- 44491:44491
# User from docker host to impersonate in container (configured in .env file)
user: "${USER_PUID}:${USER_PGID}"
restart: always
# ==========================================================================
# MiniDLNA service
# => UPnP / DLNA service, used to publish media files on the local network
minidlna:
image: vladgh/minidlna:latest
container_name: minidlna
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
network_mode: "host"
environment:
# MiniDLNA settings
- MINIDLNA_FRIENDLY_NAME=ahuh-qnas-mini
- MINIDLNA_MEDIA_DIR=/storage
# User from docker host to impersonate in container (configured in .env file)
- PUID=${USER_PUID}
- PGID=${USER_PGID}
volumes:
# Sync time with docker host
- /etc/localtime:/etc/localtime:ro
# Configuration dir
- /share/Download/tools/minidlna:/minidlna
# Storage dirs
- /share/Download/complete:/storage/complete:ro
- /share/Perso/Backup:/storage/Backup:ro
- /share/Perso/Photos:/storage/Photos:ro
- /share/Perso/Videos:/storage/Videos:ro
- /share/Multimedia/Films:/storage/Films:ro
- /share/Multimedia/MP3:/storage/MP3:ro
- /share/Multimedia/Series:/storage/Series:ro
- /share/Multimedia/Enfants/Films:/storage/Enfants/Films:ro
- /share/Multimedia/Enfants/Series:/storage/Enfants/Series:ro
- /share/Multimedia/Enfants/Videos:/storage/Enfants/Videos:ro
#- external-hd1:/storage/_hd1:ro
restart: always
# ==========================================================================
# pyphotorg service
# => Photo organizer and deduplicator, used to manage photos / videos on the NAS
pyphotorg:
image: ahuh/pyphotorg:latest
container_name: pyphotorg
labels:
# Enable automatic update with Watchtower
- "com.centurylinklabs.watchtower.enable=true"
environment:
# Operation switches
- ENABLE_ORGANIZE=true
- ENABLE_DEDUPLICATE=true
# Dry-run mode (no modification applied) or real mode
- DRY_RUN_MODE=false
# Job scheduler (cron format)
- "SCHEDULE_CRON=15 2 * * sun"
# Deduplicator - Dirs and priority orders for duplicate removal (remove duplicates from highest to lowest number)
- "DEDUP_STORAGE_PATH=/storage/Photos"
- "DEDUP_BACKUP_PATH=/storage/Backup/pyphotorg"
- "DEDUP_DIR_ORDER_01=/storage/Photos/Famille"
- "DEDUP_DIR_ORDER_02=/storage/Photos/Amis"
- "DEDUP_DIR_ORDER_03=/storage/Photos/Mobile Olivia"
- "DEDUP_DIR_ORDER_04=/storage/Photos/Mobile Julien"
- "DEDUP_DIR_PATH_FILTER=/.@__thumb"
# Organizer - Path couples: sync dirs (source) and storage dirs (target)
- "ORG_INCOMING_PATH_01=/storage/sync/camera-julien"
- "ORG_STORAGE_PATH_01=/storage/Photos/Mobile Julien"
- "ORG_INCOMING_PATH_02=/storage/sync/camera-olivia"
- "ORG_STORAGE_PATH_02=/storage/Photos/Mobile Olivia"
# Organizer parameters
- ORG_TIMESTAMP_TAGS=FileModifyDate,CreationDate,CreateDate,DateTimeOriginal
- ORG_STORAGE_PATH_PATTERN=%Y/%Y-%m/%Y%m%d_%H%M%S%%-3c.%%e
# User from docker host to impersonate in container (configured in .env file)
- PUID=${USER_PUID}
- PGID=${USER_PGID}
volumes:
- /etc/localtime:/etc/localtime:ro
# Sync dir
- /share/homes/ahuh/.Qsync:/storage/sync
# Storage dir
- /share/Perso/Photos:/storage/Photos
# Backup dir
- /share/Perso/Backup/pyphotorg:/storage/Backup/pyphotorg
restart: always