cspark
/
Client-Ansible-Setup
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add resource quotas to all service docker configurations

This commit is contained in:
cspark 2024-02-29 20:15:36 +00:00
parent dc4be1a677
commit ffd3d8f262
6 changed files with 69 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
services/service_git/docker-compose.yml
View File

@ -20,6 +20,10 @@ services:
- "222:22"
networks:
forgejo:
deploy:
limits:
cpus: '0.10'
memory: 512M
forgejo:
image: codeberg.org/forgejo/forgejo:1.21
@ -39,6 +43,10 @@ services:
- ./forgejo-data:/data
- /etc/timezone:/etc/timezone:ro
- /etc/localtime:/etc/localtime:ro
deploy:
limits:
cpus: '0.25'
memory: 512M
depends_on:
- forgejo-db
@ -54,6 +62,10 @@ services:
networks:
forgejo:
ipv4_address: 11.1.0.22
deploy:
limits:
cpus: '0.10'
memory: 128M
networks:
forgejo:

12
services/service_invidious/docker-compose.yml
View File

@ -22,6 +22,10 @@ services:
- "3000:3000"
networks:
invidious:
deploy:
limits:
cpus: '0.10'
memory: 512M
invidious:
network_mode: "service:invidious-gluetun"
@ -61,6 +65,10 @@ services:
max-file: "4"
depends_on:
- invidious-db
deploy:
limits:
cpus: '0.25'
memory: 512M
invidious-db:
image: docker.io/library/postgres:14
@ -80,6 +88,10 @@ services:
networks:
invidious:
ipv4_address: 11.1.0.22
deploy:
limits:
cpus: '0.10'
memory: 128M
networks:
invidious:

9
services/service_mail/docker-compose.yml
View File

@ -21,6 +21,11 @@ services:
- "587:587" # SMTP+STARTTLS Explicit TLS / Appears to be used
- "993:993" # IMAPS Implicit TLS / Appears to not be used
- "143:143" # IMAPS IMAP+STARTTLS Explicit TLS / Appears to be used
deploy:
limits:
cpus: '0.10'
memory: 512M
mailserver:
network_mode: "service:mailserver-gluetun"
image: ghcr.io/docker-mailserver/docker-mailserver:latest
@ -56,4 +61,8 @@ services:
- ENABLE_CLAMAV=0
cap_add:
- NET_ADMIN # For Fail2Ban to work
deploy:
limits:
cpus: '0.25'
memory: 512M
restart: always

8
services/service_minecraft/docker-compose.yml
View File

@ -23,6 +23,10 @@ services:
volumes:
# Custom IPTables forwarding rules to forward TCP(web) traffic from port 54376 to port 25565
- ./post-rules.txt:/iptables/post-rules.txt
deploy:
limits:
cpus: '0.10'
memory: 512M
mc:
image: itzg/minecraft-server
@ -41,3 +45,7 @@ services:
# - ./data:/data
#
- ./data:/data
deploy:
limits:
cpus: '0.50'
memory: 1500M

16
services/service_nextcloud/docker-compose.yml
View File

@ -24,6 +24,10 @@ services:
- ./post-rules.txt:/iptables/post-rules.txt
ports:
- "11000:11000"
deploy:
limits:
cpus: '0.10'
memory: 512M
nextcloud-cache:
network_mode: "service:nextcloud-gluetun"
@ -32,6 +36,10 @@ services:
mem_limit: 2048m
mem_reservation: 512m
command: redis-server --requirepass {{ service_nextcloud_postgres_pass }}
deploy:
limits:
cpus: '0.10'
memory: 2048M
nextcloud-db:
network_mode: "service:nextcloud-gluetun"
@ -44,6 +52,10 @@ services:
- POSTGRES_PASSWORD={{ service_nextcloud_postgres_pass }}
- POSTGRES_DB=nextcloud
- POSTGRES_USER=nextcloud
deploy:
limits:
cpus: '0.10'
memory: 128M
nextcloud:
network_mode: "service:nextcloud-gluetun"
@ -65,4 +77,8 @@ services:
- OVERWRITEHOST=nextcloud.{{ domain_name }}
- OVERWRITEPROTOCOL=https
- OVERWRITECLIURL=https://nextcloud.{{ domain_name }}
deploy:
limits:
cpus: '0.25'
memory: 512M

12
services/service_searxng/docker-compose.yml
View File

@ -20,6 +20,10 @@ services:
- FIREWALL_VPN_INPUT_PORTS=8080
ports:
- "8080:8080"
deploy:
limits:
cpus: '0.10'
memory: 512M
searxng-redis:
network_mode: "service:searxng-gluetun"
@ -34,6 +38,10 @@ services:
- SETGID
- SETUID
- DAC_OVERRIDE
deploy:
limits:
cpus: '0.10'
memory: 128M
# If you want to change container listen port from default 8080 https://github.com/searxng/searxng-docker/issues/20
# Set environment variable BIND_ADDRESS, example:
@ -63,3 +71,7 @@ services:
options:
max-size: "1m"
max-file: "1"
deploy:
limits:
cpus: '0.25'
memory: 512M