add

Teleport/config/teleport.yaml

@@ -0,0 +1,22 @@
+version: v3
+teleport:
+  nodename: teleport-demo-1.srv-prod-1.home.clcreative.de
+  data_dir: /var/lib/teleport
+  log:
+    output: stderr
+    severity: INFO
+    format:
+      output: text
+auth_service:
+  enabled: yes
+  listen_addr: 0.0.0.0:3025
+  proxy_listener_mode: multiplex
+  cluster_name: teleport-demo-1.srv-prod-1.home.clcreative.de
+ssh_service:
+  enabled: no
+proxy_service:
+  enabled: yes
+  web_listen_addr: 0.0.0.0:3080
+  public_addr: teleport-demo-1.srv-prod-1.home.clcreative.de
+  https_keypairs: []
+  acme: {}

Teleport/docker-compose.yaml

@@ -0,0 +1,29 @@
+---
+networks:
+  frontend:
+    external: true
+services:
+  teleport:
+    image: public.ecr.aws/gravitational/teleport-distroless-debug:15.1.4
+    container_name: teleport-demo-1
+    ports:
+      - "3080:3080"
+      - "3023:3023"
+      - "3024:3024"
+      - "3025:3025"
+    volumes:
+      - ./config:/etc/teleport
+      - ./data:/var/lib/teleport
+    labels:
+      traefik.enable: "true"
+      traefik.http.services.teleport-demo-1.loadbalancer.server.port: "3080"
+      traefik.http.services.teleport-demo-1.loadbalancer.server.scheme: "https"
+      traefik.http.routers.teleport-demo-1-http.entrypoints: "web"
+      traefik.http.routers.teleport-demo-1-http.rule: "Host(`teleport-demo-1.srv-prod-1.home.clcreative.de`)"
+      traefik.http.routers.teleport-demo-1-https.entrypoints: "websecure"
+      traefik.http.routers.teleport-demo-1-https.rule: "Host(`teleport-demo-1.srv-prod-1.home.clcreative.de`)"
+      traefik.http.routers.teleport-demo-1-https.tls: "true"
+      traefik.http.routers.teleport-demo-1-https.tls.certresolver: "cloudflare"
+    networks:
+      - frontend
+    restart: unless-stopped