minor fixes

docker-compose.yaml

@@ -1,13 +1,20 @@
 services:
-  # System Monitoring
+  # --------------------------
+  # Netdata Manager
+  # --------------------------
   netdata:
     image: netdata/netdata:latest
     container_name: netdata
     ports:
       - "7001:19999"
+    cap_add:
+      - SYS_PTRACE
+      - SYS_ADMIN
+    security_opt:
+      - apparmor:unconfined
     volumes:
       - netdata_config:/etc/netdata
-      - netdata_lib:/var/lib/netdata  
+      - netdata_lib:/var/lib/netdata
       - netdata_cache:/var/cache/netdata
       - /proc:/host/proc:ro
       - /sys:/host/sys:ro
@@ -16,19 +23,18 @@ services:
       - /etc/passwd:/host/etc/passwd:ro
       - /etc/group:/host/etc/group:ro
       - /etc/os-release:/host/etc/os-release:ro
-    cap_add:
-      - SYS_PTRACE
-      - SYS_ADMIN
-    security_opt:
-      - apparmor:unconfined
     environment:
       - NETDATA_CLAIM_TOKEN=${NETDATA_CLAIM_TOKEN:-}
       - NETDATA_CLAIM_URL=https://app.netdata.cloud
     networks:
       - monitoring-net
     restart: unless-stopped
+    profiles:
+      - netdata-manager
 
-  # Container Management
+  # --------------------------
+  # Portainer Manager
+  # --------------------------
   portainer:
     image: portainer/portainer-ce:latest
     container_name: portainer
@@ -45,42 +51,67 @@ services:
       - "private-pi:192.168.1.111"
     security_opt:
       - no-new-privileges:true
+    profiles:
+      - portainer-manager
 
-#  # Web-based SSH Terminal
+  # --------------------------
-#  webssh:
+  # Portainer Agent
-#    image: kuaifan/webssh:arm64
+  # --------------------------
-#    container_name: webssh
+  portainer_agent:
-#    ports:
+    image: portainer/agent:latest
-#      - "7003:5032"
+    container_name: portainer_agent
-#    environment:
+    restart: unless-stopped
-#      - TZ=${TZ:-UTC}
+    ports:
-#      # Restrict to internal network for security
+      - "9001:9001"
-#      - WEBSSH_ORIGIN_LIST=*
+    volumes:
-#      - WEBSSH_POLICY=reject
+      - /var/run/docker.sock:/var/run/docker.sock
-#    networks:
+      - portainer_agent_data:/data
-#      - monitoring-net
+    networks:
-#    restart: unless-stopped
+      - monitoring-net
-#
+    profiles:
-#  # Log Management (Optional but useful)
+      - portainer-agent
-#  dozzle:
+
-#    image: amir20/dozzle:latest
+  # --------------------------
-#    container_name: dozzle
+  # Netdata Agent
-#    ports:
+  # --------------------------
-#      - "7004:8080"
+  netdata_node:
-#    volumes:
+    image: netdata/netdata:latest
-#      - /var/run/docker.sock:/var/run/docker.sock:ro
+    container_name: netdata_node
-#    networks:
+    restart: unless-stopped
-#      - monitoring-net
+    ports:
-#    restart: unless-stopped
+      - "7003:19999"
-#    environment:
+    cap_add:
-#      - DOZZLE_NO_ANALYTICS=true
+      - SYS_PTRACE
+      - SYS_ADMIN
+    security_opt:
+      - apparmor:unconfined
+    volumes:
+      - netdata_config:/etc/netdata
+      - netdata_lib:/var/lib/netdata
+      - netdata_cache:/var/cache/netdata
+      - /proc:/host/proc:ro
+      - /sys:/host/sys:ro
+      - /var/run/docker.sock:/var/run/docker.sock:ro
+      - /:/host/root:ro,rslave
+      - /etc/passwd:/host/etc/passwd:ro
+      - /etc/group:/host/etc/group:ro
+      - /etc/os-release:/host/etc/os-release:ro
+    environment:
+      - NETDATA_STREAM_PARENT=https://netdata.aetoskia.com
+      - NETDATA_CLAIM_TOKEN=${NETDATA_CLAIM_TOKEN:-}
+      - NETDATA_CLAIM_URL=https://app.netdata.cloud
+    networks:
+      - monitoring-net
+    profiles:
+      - netdata-node
 
 volumes:
   portainer_data:
+  portainer_agent_data:
   netdata_config:
   netdata_lib:
   netdata_cache:
 
 networks:
   monitoring-net:
-    driver: bridge
+    driver: bridge