Immich self-hosted docker setup using Traefik as reverse proxy
This is my Docker and Traefik setup for running Immich as a self-hosted photo and video backup solution. It uses Traefik as a reverse proxy to handle HTTPS and routing.
See Simple Traefik docker-compose setup with Lets Encrypt Cloudflare DNS-01 & TLS-ALPN-01 & HTTP-01 challenges for the Traefik setup.
services:
immich-server:
container_name: immich_server
image: ghcr.io/immich-app/immich-server:${IMMICH_VERSION:-release}
# extends:
# file: hwaccel.transcoding.yml
# service: cpu # set to one of [nvenc, quicksync, rkmpp, vaapi, vaapi-wsl] for accelerated transcoding
volumes:
- ./immich_photos:/usr/src/app/upload
- /etc/localtime:/etc/localtime:ro
env_file:
- .env
#ports:
# - 2283:2283
depends_on:
- redis
- database
restart: always
healthcheck:
disable: false
labels:
- "traefik.enable=true"
- "traefik.http.routers.immich-mydomain.rule=Host(`immich.mydomain.com`)"
- "traefik.http.routers.immich-mydomain.entrypoints=websecure"
- "traefik.http.routers.immich-mydomain.tls.certresolver=cloudflare-ec384"
- "traefik.http.routers.immich-mydomain.tls.domains[0].main=mydomain.com"
- "traefik.http.routers.immich-mydomain.tls.domains[0].sans=*.mydomain.com"
- "traefik.http.services.immich-mydomain.loadbalancer.server.port=2283"
immich-machine-learning:
container_name: immich_machine_learning
image: ghcr.io/immich-app/immich-machine-learning:${IMMICH_VERSION:-release}
# extends:
# file: hwaccel.ml.yml
# service: cpu # set to one of [armnn, cuda, rocm, openvino, openvino-wsl, rknn] for accelerated inference
#ports:
# - 3003:3003
volumes:
- ./model_cache:/cache
env_file:
- .env
restart: always
healthcheck:
disable: false
redis:
container_name: immich_redis
image: docker.io/valkey/valkey:8-bookworm@sha256:fec42f399876eb6faf9e008570597741c87ff7662a54185593e74b09ce83d177
healthcheck:
test: redis-cli ping || exit 1
restart: always
database:
container_name: immich_postgres
image: ghcr.io/immich-app/postgres:14-vectorchord0.4.3-pgvectors0.2.0
env_file:
- .env
environment:
POSTGRES_PASSWORD: ${DB_PASSWORD}
POSTGRES_USER: ${DB_USERNAME}
POSTGRES_DB: ${DB_DATABASE_NAME}
POSTGRES_INITDB_ARGS: '--data-checksums'
volumes:
- ./postgres_data:/var/lib/postgresql/data
ports:
- 5432:5432
shm_size: 128mb
restart: always
Environment file (.env)
# You can find documentation for all the supported env variables at https://immich.app/docs/install/environment-variables
# To set a timezone, uncomment the next line and change Etc/UTC to a TZ identifier from this list: https://en.wikipedia.org/wiki/List_of_tz_database_time_zones#List
TZ=Europe/Berlin
# The Immich version to use. You can pin this to a specific version like "v1.71.0"
IMMICH_VERSION=release
# Connection secret for postgres. You should change it to a random password
# Please use only the characters `A-Za-z0-9`, without special characters or spaces
DB_PASSWORD=chohgh5ufeeM1Boich2ieV5ighufie
# The values below this line do not need to be changed
###################################################################################
DB_USERNAME=postgres
DB_DATABASE_NAME=immich
If this post helped you, please consider buying me a coffee or donating via PayPal to support research & publishing of new posts on TechOverflow