api:
  dashboard: true
  debug: false  # never true in production
  insecure: false  # explicit

entryPoints:
  web:
    address: :80
    #http:
     # middlewares:
      #  - crowdsec-bouncer@file
      redirections:
        entryPoint:
          to: websecure
          scheme: https

  websecure:
    address: :443
    #http:
     # middlewares:
      #  - crowdsec-bouncer@file

providers:
  docker:
    endpoint: "unix:///var/run/docker.sock"
    exposedByDefault: false
  file:
    filename: ./config.yml
  docker:
    endpoint: "tcp://socket-proxy:2375"  # not the unix socket
    exposedByDefault: false

certificatesResolvers:
  cloudflare:
    acme:
      email: "noreply@gabesville.com"
      storage: /var/traefik/certs/cloudflare-acme.json
      caServer: 'https://acme-v02.api.letsencrypt.org/directory'
      keyType: EC256
      dnsChallenge:
        provider: cloudflare
        resolvers:
          - "1.1.1.1:53"
          - "9.9.9.9:53"

log:
  level: "INFO"
  filePath: "/var/log/traefik/traefik.log"
accessLog:
  filePath: "/var/log/traefik/access.log"

global:
  checkNewVersion: false
  sendAnonymousUsage: false