Skip to content

fix: pin Caddy backend IP and constrain default compose subnet#95

Merged
sidey79 merged 3 commits into
mainfrom
fix/fhem-trusted-proxy-and-cert-serial
May 24, 2026
Merged

fix: pin Caddy backend IP and constrain default compose subnet#95
sidey79 merged 3 commits into
mainfrom
fix/fhem-trusted-proxy-and-cert-serial

Conversation

@sidey79
Copy link
Copy Markdown
Owner

@sidey79 sidey79 commented May 23, 2026
edited
Loading

Summary

This PR hardens the Caddy network setup in docker-compose.yml to avoid address instability and subnet collisions.

Changes

  • Set a fixed backend IP for caddy on backend_net:
    • 172.28.19.8
  • Add an explicit default bridge network with minimal IPAM range:
    • subnet 172.31.255.0/30
  • Keep existing external networks unchanged:
    • network_backend_net
    • network_homelan

Why

  • Prevent collisions caused by an oversized/auto-assigned default network.
  • Keep backend addressing predictable for reverse proxy and trust-related behavior.

Scope

  • Only docker-compose.yml is changed.

chatgpt-codex-connector[bot]
chatgpt-codex-connector Bot reviewed May 23, 2026
View reviewed changes
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 2d36d71549

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Comment thread caddy/Caddyfile Outdated
@sidey79
Copy link
Copy Markdown
Owner Author

sidey79 commented May 23, 2026

@codex review

@chatgpt-codex-connector
Copy link
Copy Markdown

chatgpt-codex-connector Bot commented May 23, 2026

Codex Review: Didn't find any major issues. Delightful!

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

@sidey79 sidey79 changed the title fhem: fix client-cert serial format and pin caddy backend IP fix: pin Caddy backend IP and constrain default compose subnet May 24, 2026
@sidey79 sidey79 merged commit c89d9b0 into main May 24, 2026
4 checks passed
@sidey79 sidey79 deleted the fix/fhem-trusted-proxy-and-cert-serial branch May 24, 2026 10:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sidey79