forked from mikesplain/openvas-docker
-
Notifications
You must be signed in to change notification settings - Fork 1
/
docker-compose.yml
63 lines (63 loc) · 1.76 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
version: '3'
services:
# This Nginx will be the first to start, and it will serve the redirect as well as ACME verification
nginx:
image: nginx:alpine
restart: always
hostname: nginx
ports:
- "80:80"
links:
- openvas
volumes:
- ./conf/nginx.conf:/etc/nginx/nginx.conf:ro
- ./data/letsencrypt:/etc/letsencrypt
- ./data/letsencrypt-www:/tmp/letsencrypt
# This Nginx requires the certificates to exist, otherwise will fail
nginx_ssl:
image: nginx:alpine
restart: always
hostname: nginx_ssl
ports:
- "443:443"
links:
- openvas
- letsencrypt
volumes:
- ./conf/nginx_ssl.conf:/etc/nginx/nginx.conf:ro
- ./data/letsencrypt:/etc/letsencrypt
- ./data/letsencrypt-www:/tmp/letsencrypt
letsencrypt:
restart: always
image: kvaps/letsencrypt-webroot
volumes:
- ./data/letsencrypt:/etc/letsencrypt
- ./data/letsencrypt-www:/tmp/letsencrypt
links:
- nginx
environment:
DOMAINS: example.com
EMAIL: [email protected]
WEBROOT_PATH: /tmp/letsencrypt
EXP_LIMIT: 30
CHECK_FREQ: 30
openvas:
restart: always
image: mikesplain/openvas
hostname: openvas
expose:
- "443"
volumes:
- "./data/openvas:/var/lib/openvas/mgr/"
environment:
# CHANGE THIS !
OV_PASSWORD: securepassword41
labels:
deck-chores.dump.command: sh -c "greenbone-nvt-sync; openvasmd --rebuild --progress"
deck-chores.dump.interval: daily
# Daily updates to openvas
cron:
restart: always
image: funkyfuture/deck-chores
volumes:
- "/var/run/docker.sock:/var/run/docker.sock"