services:
  nginx:
    image: nginx:latest
    container_name: nginx
    restart: always
    ports:
      - "3332:3332"
    volumes:
      - ./nginx/nginx.conf:/etc/nginx/nginx.conf:ro
      - ./nginx/logs:/var/log/nginx
    network_mode: "host"
    extra_hosts:
      - "host.docker.internal:host-gateway"
    depends_on:
      - suricata

  suricata:
    image: jasonish/suricata
    container_name: suricata
    restart: always
    cap_add:
      - NET_ADMIN
      - NET_RAW
      - SYS_NICE
    network_mode: "host"
    extra_hosts:
      - "host.docker.internal:host-gateway"
    environment:
      - PUID=1000
      - PGID=1000
    volumes:
      - ./suricata/etc:/etc/suricata
      - ./suricata/logs:/var/log/suricata
      - ./suricata/lib:/var/lib/suricata
    command: ["-c", "/etc/suricata/suricata.yaml", "--af-packet"]

networks:
  suricata-net:
    driver: bridge