image: nginx:stable-alpine
    ports:
      - "80:80/tcp"
      - "443:443/tcp"
      - "443:443/udp"
    sysctls:
      net.ipv4.ip_unprivileged_port_start: 0
    tmpfs:
      - "/var/lib/varnish/varnishd:uid=1000,gid=1000"
    volumes:
      - "/etc/lixonet/${netname}/.config/proxy-frontend:/etc/nginx"
    depends_on:
      - tinc
    restart: always
    networks:
      internal: