global:
  checkNewVersion: false
  sendAnonymousUsage: false

#     - level: [TRACE, DEBUG, INFO, WARN, ERROR, FATAL]
log:
  level: ERROR

accesslog: {}

api:
  dashboard: true
  insecure: true

entryPoints:
  web:
    address: :80
    http:
      redirections:
        entryPoint:
          to: websecure
          scheme: https
  websecure:
    address: :443
    forwardedHeaders:
      trustedIPs:
        # Local IPs
        - "127.0.0.1/32"
        - "10.0.0.0/8"
        - "192.168.0.0/16"
        - "172.16.0.0/12"

certificatesResolvers:
  cloudflare:
    acme:
      email: ${EMAIL_ADDRESS}
      storage: /var/traefik/certs/cloudflare-acme.json
      caServer: "https://acme-v02.api.letsencrypt.org/directory"
      dnsChallenge:
        provider: cloudflare
        resolvers:
          - "1.1.1.1:53"
          - "9.9.9.9:53"

serversTransport:
  insecureSkipVerify: true

providers:
  docker:
    exposedByDefault: false
    network: nextcloud-aio, passbolt_frontend, pihole, hass_frontend, immich_frontend
  file:
    directory: "/etc/traefik/conf/"
    watch: true