diff --git a/README.md b/README.md
index b3773a5..6bbecc4 100644
--- a/README.md
+++ b/README.md
@@ -1,15 +1,16 @@
 # compy
 
-> One line description of the recipe
+> Compy is an HTTP/HTTPS forward proxy with content compression/transcoding capabilities.
+> One use case is to reduce bandwidth usage when browsing on limited mobile broadband connection.
 
 <!-- metadata -->
 
 * **Category**: Apps
-* **Status**: 0
-* **Image**: [`compy`](https://hub.docker.com/r/compy), 4, upstream
+* **Status**: 1, alpha
+* **Image**: [`compy`](https://hub.docker.com/r/thecoopcloud/compy), 0, own
 * **Healthcheck**: No
 * **Backups**: No
-* **Email**: No
+* **Email**: N/A
 * **Tests**: No
 * **SSO**: No
 
@@ -22,3 +23,7 @@
 * `abra app deploy <app-name>`
 
 For more, see [`docs.coopcloud.tech`](https://docs.coopcloud.tech).
+
+## SSL (and Man-in-the-Middle)
+
+
diff --git a/compose.ssl.yml b/compose.ssl.yml
new file mode 100644
index 0000000..34b1d07
--- /dev/null
+++ b/compose.ssl.yml
@@ -0,0 +1,11 @@
+---
+version: "3.8"
+
+services:
+  app:
+    command: ["-cert", "/certs/cert.crt", "-key", "/certs/cert.key", "-ca", "/certs/ca.crt", "-cakey", "/certs/ca.key"]
+    volumes:
+      - "compy_certs:/certs"
+
+volumes:
+  compy_certs:
diff --git a/compose.yml b/compose.yml
index a2c3805..2d95dd0 100644
--- a/compose.yml
+++ b/compose.yml
@@ -3,7 +3,7 @@ version: "3.8"
 
 services:
   app:
-    image: nginx:1.20.0
+    image: thecoopcloud/compy
     networks:
       - proxy
     deploy:
@@ -11,21 +11,18 @@ services:
         condition: on-failure
       labels:
         - "traefik.enable=true"
-        - "traefik.http.services.${STACK_NAME}.loadbalancer.server.port=80"
-        - "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`${EXTRA_DOMAINS})"
-        - "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
-        - "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
-        ## Redirect from EXTRA_DOMAINS to DOMAIN
-        #- "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}-redirect"
-        #- "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLForceHost=true"
-        #- "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLHost=${DOMAIN}"
+        - "traefik.tcp.routers.${STACK_NAME}.entrypoints=compy"
+        - "traefik.tcp.routers.${STACK_NAME}.service=${STACK_NAME}-tcp-service"
+        - "traefik.tcp.routers.${STACK_NAME}.rule=HostSNI(`*`)"
+        - "traefik.tcp.routers.${STACK_NAME}.tls.passthrough=true"
+        - "traefik.tcp.services.${STACK_NAME}-tcp-service.loadbalancer.server.port=9999"
         - "coop-cloud.${STACK_NAME}.version="
-    healthcheck:
-      test: ["CMD", "curl", "-f", "http://localhost"]
-      interval: 30s
-      timeout: 10s
-      retries: 10
-      start_period: 1m
+    # healthcheck:
+    #   test: ["CMD", "curl", "-f", "http://localhost"]
+    #   interval: 30s
+    #   timeout: 10s
+    #   retries: 10
+    #   start_period: 1m
 
 networks:
   proxy: