caddy-dockerd

Caddy reverse proxy for Docker Remote API with IP filtering.

Setup dockerd

Expose Docker remote API on localhost port 2375 in /etc/systemd/system/docker.service.d/docker.conf

[Service]
ExecStart=
ExecStart=/usr/bin/dockerd -H fd:// \
  -H tcp://127.0.0.1:2375 \
  --storage-driver=overlay2 \
  --dns 8.8.4.4 --dns 8.8.8.8 \
  --log-driver json-file \
  --log-opt max-size=50m --log-opt max-file=10

Run Caddy

Filter Docker API access by IPv4 or IPv6 or range of IPs

docker run -d -e IP=86.124.244.168 \
    --net=host \
    --name=caddy-dockerd \
    --restart=always \
    stefanprodan/caddy-dockerd

Docker Swarm service:

docker service create -d -e IP=188.27.83.136/30 \
    --network=host \
    --name=caddy-dockerd \
    --mode global \
    --constraint 'node.role == manager' \
    stefanprodan/caddy-dockerd

Test access on port 7575 with curl:

curl <DOCKER-IP>:7575/version

Docker remote access

$ export DOCKER_HOST=tcp://<DOCKER-IP>:7575

$ docker info

Name		Name	Last commit message	Last commit date
Latest commit History 13 Commits
conf		conf
dockerd		dockerd
.gitignore		.gitignore
Dockerfile		Dockerfile
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

conf

conf

dockerd

dockerd

.gitignore

.gitignore

Dockerfile

Dockerfile

LICENSE

LICENSE

README.md

README.md

Repository files navigation

caddy-dockerd

Setup dockerd

Run Caddy

Docker remote access

About

Releases

Packages

Languages

License

stefanprodan/caddy-dockerd

Folders and files

Latest commit

History

Repository files navigation

caddy-dockerd

Setup dockerd

Run Caddy

Docker remote access

About

Resources

License

Stars

Watchers

Forks

Languages