From 8c5accc6254cfc31a266378ba838e6d44b4d9b01 Mon Sep 17 00:00:00 2001
From: ryuupendragon <ryuu@ryuu.in>
Date: Sun, 6 Jul 2025 13:13:37 +0530
Subject: [PATCH] Add caddy-cloudflare-ddns-crowdsec

---
 .../docker-compose.yml                        | 58 +++++++++++++++++++
 1 file changed, 58 insertions(+)
 create mode 100644 caddy-cloudflare-ddns-crowdsec/docker-compose.yml

diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml
new file mode 100644
index 0000000..8c39164
--- /dev/null
+++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml
@@ -0,0 +1,58 @@
+services:
+  crowdsec:
+    image: ghcr.io/crowdsecurity/crowdsec:v1.6.9
+    container_name: crowdsec
+    networks:
+      proxy:
+        ipv4_address: 172.30.0.3
+    environment:
+      - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY}
+      - GID=${GID}
+      - COLLECTIONS=${COLLECTIONS}
+    volumes:
+      - ${APPDATA_PATH}/caddy-crowdsec/crowdsec-acquis.d:/etc/crowdsec/acquis.d
+      - ${APPDATA_PATH}/caddy-crowdsec/crowdsec-db:/var/lib/crowdsec/data/
+      - ${APPDATA_PATH}/caddy-crowdsec/crowdsec-config:/etc/crowdsec/
+      - ${APPDATA_PATH}/caddy-crowdsec/caddy-logs:/var/log/caddy:ro
+    restart: unless-stopped
+    healthcheck:
+      test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+      start_period: 30s 
+
+  caddy:
+    image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.0
+    container_name: caddy
+    depends_on:
+      crowdsec:
+        condition: service_healthy
+    cap_add:
+      - NET_ADMIN
+    networks:
+      proxy:
+        ipv4_address: 172.30.0.2
+    environment:
+      - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN}
+      - CROWDSEC_API_KEY=${CROWDSEC_API_KEY}
+    volumes:
+      - ${APPDATA_PATH}/caddy-crowdsec/caddy-file:/etc/caddy
+      - ${APPDATA_PATH}/caddy-crowdsec/caddy-config:/config
+      - ${APPDATA_PATH}/caddy-crowdsec/caddy-data:/data
+      - ${APPDATA_PATH}/caddy-crowdsec/caddy-logs:/logs
+      - ${APPDATA_PATH}/caddy-crowdsec/caddy-srv:/srv
+    ports:
+      - ${HTTP_PORT}:80
+      - ${HTTPS_PORT}:443
+      - ${HTTPS_PORT}:443/udp
+    restart: unless-stopped
+
+networks:
+  proxy:
+    name: proxy
+    driver: bridge
+    ipam:
+     config:
+       - subnet: 172.30.0.0/16
+         gateway: 172.30.0.1