created dedicated gateway directory
made transip GO dockerfile to run it on ARM (needs more tweaking, because now it only runs on ARM)
This commit is contained in:
@@ -0,0 +1,83 @@
|
||||
services:
|
||||
swag:
|
||||
image: lscr.io/linuxserver/swag:latest
|
||||
container_name: swag
|
||||
cap_add:
|
||||
- NET_ADMIN
|
||||
environment:
|
||||
- PUID=1000
|
||||
- PGID=100
|
||||
- TZ=Etc/UTC
|
||||
# - URL=vbchaos.nl
|
||||
- URL=mitscherlich.nl
|
||||
- VALIDATION=http
|
||||
- SUBDOMAINS=nc,esp,git,jenkins,registry,registrybrowser,svn,vpn,vaultwarden,collabora
|
||||
- CERTPROVIDER= #optional
|
||||
- DNSPLUGIN=cloudflare #optional
|
||||
- PROPAGATION= #optional
|
||||
- EMAIL= matthias.mitscherlich@gmail.com
|
||||
# - ONLY_SUBDOMAINS=false #optional
|
||||
- ONLY_SUBDOMAINS=true
|
||||
# - EXTRA_DOMAINS=*.vbchaos.nl #optional
|
||||
- STAGING=false #optional
|
||||
volumes:
|
||||
- /docker_config/swag:/config
|
||||
ports:
|
||||
- 443:443
|
||||
- 81:80 #optional
|
||||
restart: unless-stopped
|
||||
|
||||
vaultwarden:
|
||||
container_name: vaultwarden
|
||||
image: vaultwarden/server:latest
|
||||
restart: unless-stopped
|
||||
volumes:
|
||||
- /docker_config/vaultwarden:/data/
|
||||
ports:
|
||||
- 5555:80
|
||||
environment:
|
||||
- DOMAIN=https://vaultwarden.vbchaos.nl
|
||||
- LOGIN_RATELIMIT_MAX_BURST=10
|
||||
- LOGIN_RATELIMIT_SECONDS=60
|
||||
- ADMIN_RATELIMIT_MAX_BURST=10
|
||||
- ADMIN_RATELIMIT_SECONDS=2
|
||||
- ADMIN_TOKEN=$$argon2id$$v=19$$m=65540,t=3,p=4$$Vv4wT0EpGslsEAHpgw+U1FwxUQjguK9qkwJQB7WLP+k$$7lBaj+G9jLyXj5MxC2RqNGyGw0/vjOzcgwk4ArN6BVM
|
||||
- SENDS_ALLOWED=true
|
||||
- EMERGENCY_ACCESS_ALLOWED=true
|
||||
- WEB_VAULT_ENABLED=true
|
||||
- SIGNUPS_ALLOWED=false
|
||||
- SIGNUPS_VERIFY=true
|
||||
- SIGNUPS_VERIFY_RESEND_TIME=3600
|
||||
- SIGNUPS_VERIFY_RESEND_LIMIT=5
|
||||
- SIGNUPS_DOMAINS_WHITELIST=vbchaos.nl
|
||||
- SMTP_HOST=smtp.gmail.com
|
||||
- SMTP_FROM=vaultwarden@vbchaos.nl
|
||||
- SMTP_FROM_NAME=Vaultwarden
|
||||
- SMTP_SECURITY=starttls
|
||||
- SMTP_PORT=587
|
||||
- SMTP_USERNAME=matthias.mitscherlich@gmail.com
|
||||
- SMTP_PASSWORD=oomgyoiqepsqaikn
|
||||
- SMTP_AUTH_MECHANISM="Login"
|
||||
|
||||
openvpn:
|
||||
image: mjenz/rpi-openvpn
|
||||
container_name: openvpn
|
||||
volumes:
|
||||
- /docker_config/openvpn:/etc/openvpn
|
||||
ports:
|
||||
- 1194:1194/udp
|
||||
cap_add:
|
||||
- NET_ADMIN
|
||||
devices:
|
||||
- /dev/net/tun
|
||||
restart: always
|
||||
|
||||
go-transip-dyndns:
|
||||
build:
|
||||
context: ./transip
|
||||
# image: jlentink/go-transip-dyndns:latest
|
||||
# container_name: go-transip-dyndns
|
||||
volumes:
|
||||
- ./go-transip-dyndns.toml:/etc/go-transip-dyndns.toml
|
||||
restart: unless-stopped
|
||||
|
||||
@@ -0,0 +1,133 @@
|
||||
[general]
|
||||
#
|
||||
# Enable verbose mode (debugging information).
|
||||
# Disabled by default.
|
||||
#
|
||||
verbose = true
|
||||
|
||||
#
|
||||
# Pull in your public IPv4 address.
|
||||
#
|
||||
IPv4 = true
|
||||
|
||||
#
|
||||
# Pull in your public IPv6 address.
|
||||
# Only use when you have an IPv6 address.
|
||||
#
|
||||
IPv6 = false
|
||||
|
||||
#
|
||||
# Update in keep running mode every x (in minutes)
|
||||
#
|
||||
update-frequency = 10
|
||||
|
||||
[account]
|
||||
#
|
||||
# Your account name on transip.
|
||||
#
|
||||
username = "vbchaos"
|
||||
#
|
||||
# Private key to get access the API.
|
||||
# Create your own key here: https://www.transip.nl/cp/account/api/.
|
||||
#
|
||||
# You have two options here.
|
||||
# Include the private key in the configuration file.
|
||||
#
|
||||
# Example:
|
||||
# private-key = """-----BEGIN PRIVATE KEY-----
|
||||
#...Your certificate data...
|
||||
#-----END PRIVATE KEY-----"""
|
||||
#
|
||||
# or
|
||||
#
|
||||
# provide the path to the file that contains the private key.
|
||||
#
|
||||
# Example:
|
||||
# private-key = "/path/to/key.pem"
|
||||
#
|
||||
# Mind the """content""" (3x) quote for including the key in the config and the "path" (1) for the path...
|
||||
#
|
||||
private-key = """-----BEGIN PRIVATE KEY-----
|
||||
MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQD5474i9JqiG3Kg
|
||||
xhGB5wJE3BosGfMXX46Ct3Y9t1v7i0tGuu977RDRw/IvekLbYhBWSozk5Rsg/gZy
|
||||
a0hPelJ/N0L17GUwu8YWudRSc/51E2Xik10yDH99CDZAdI7dQYgW2uXhiYcxzNNJ
|
||||
XnBdv1UejV/zYpRWqXJppHlQzYU2tVFVeXrfXBOuHsXE8kFy1Vi9wUZ9zbuAKu2M
|
||||
HzmMQNdnZMb/cf+4iSkla4vYhZbXTwxlcOzr/zyhvQuIxM6h/nK/wwHiozVij2bl
|
||||
zzdx83t4HRUXRjwyUTrvCRqV54LGL5BZLyVwvqsJQCrw8Yot9tfExfzB3UH56WcZ
|
||||
qIgqXLvhAgMBAAECggEAEqgjQP7cMLA17bT8B6PUsolwVsyVLrCOtkm2RUNUVcJ/
|
||||
m0dHrAv2DoM/qLXLGhAHQjoMrOZCEUOF/bLu0ihC0oawtCWzJGFQl8/F/2XzoJAT
|
||||
MkhoU91FA3PCgStyoyhKXdJ4CU+4TUqKl9a6MvWfCEnr2QMKKjI6fZKvEA5YHM5l
|
||||
AIqBng/jFD2VKBLu8Le9nmM8GvA+exdi8DkyuS7ui23VqpRwvoiEK6my+qxom7e5
|
||||
t1hOUn5SJWZHBoleB+g5mdmzDQat1cqcHDYZkbWoyoxNecIp3CPOU3L7Lwf/drRj
|
||||
pJM4w6WrTliehcdCkCXTy6K8QbLew+X+KfrqVmDKRQKBgQD+K+o8TbiwDHzYNDOf
|
||||
CI9PYIqO7EGWulQya3kRmyHIXg1GWTyqwOyf0QHeiiJzImJLLGwpXPfDSuBTrlrf
|
||||
xGFMrqdRxcyxbGX4mMRkOfG8IbhEMA9k74S5bi9kYQcGHMey2wA0+1GRPyVSGEK4
|
||||
F7u4GmX+PytZUyuq9kQ1POniMwKBgQD7r/EtsTaBL2+7kNg3zlNO4+RkedQPq6Iz
|
||||
U38g29hjnlQLYRan18mZYesHpImUZYnZE6lGNhq/GJRj48+PeP1j55pb5HOWF4S7
|
||||
2RdJ48KfrFmeTpB7/+ZGa81HZJU5tUo77oVNH6bPzwbeKYcyYs51cg0gIRy4ok6A
|
||||
Bj7mFlsdmwKBgQCnZw0TQq1NZiwjyd3l9KFOymr3zysztu0VeCt5KQ+LBEcB+mw2
|
||||
mnI+oE324EvoQNE0acGjTJPykDJHayJ3FsRu2OlitkAm6xoOLa/Lw04vdpYCcxTw
|
||||
icCE0Mlt92nE4Ne2OP9d5djHLSvLcicfUKJWkyxx0/EdF+Y+54vs9H2meQKBgBds
|
||||
KUK6Ujs1ge1vrl+LKP+Xf8LF/7ExpNen9pXFP98Ndf7VGzmlgFJw5WGBs3gG9wwn
|
||||
o0IweM6959lf8woEFXi9rgTNPuCB8c1Vh7BNrOgVLwXng9S2XOTC1YjGWIjVUUJA
|
||||
kVE7F9gRCS+Vp8pNna8aXRRXYIfiOvH5ItNg0zvvAoGBAJi0XYBJl9N5M6X5I1ZQ
|
||||
t14eETqhvqUfZh/q+VTit5cu1mbz/qkf4+Ok6FfqwV5pWzwNiT1fo5p/NQXTb6ee
|
||||
NCULDTwiV3x26LJXgQ/Nap7UI7v4UTAI6FPcyuEqhxe2zchiE+eh2J1VPvru1Dii
|
||||
FM37lMkICyTFFIc/s1x86VNX
|
||||
-----END PRIVATE KEY-----"""
|
||||
|
||||
#
|
||||
# The DNS record you want to update.
|
||||
# You can have as many as you want.
|
||||
#
|
||||
#[[record]]
|
||||
#
|
||||
# the domain name where the record should be updated.
|
||||
#
|
||||
#hostname = "example.com"
|
||||
#
|
||||
# The entry key for the domain
|
||||
# in this example my-home.example.com is the full dns entry we are creating here.
|
||||
#
|
||||
# use @ if you want to redirect the root domain.
|
||||
#
|
||||
#entry = "my-home"
|
||||
#
|
||||
# The caching time in seconds.
|
||||
#
|
||||
#ttl = 60
|
||||
#
|
||||
# The record type.
|
||||
# A for IPv4
|
||||
# AAAA for IPv6
|
||||
# but can also be MX TXT SRV
|
||||
#
|
||||
#type = "A"
|
||||
#
|
||||
# content that will be pushed into the record.
|
||||
# this value is ignored for A and AAAA records.
|
||||
# for other records you can use the placeholders {{.IPv4}} and {{.IPv6}}
|
||||
# to inject the IP's
|
||||
#
|
||||
# content = ""
|
||||
|
||||
[[record]]
|
||||
hostname = "mitscherlich.nl"
|
||||
entry = "*"
|
||||
ttl = 300
|
||||
type = "A"
|
||||
content = ""
|
||||
|
||||
[[record]]
|
||||
hostname = "vbchaos.nl"
|
||||
entry = "*"
|
||||
ttl = 300
|
||||
type = "A"
|
||||
content = ""
|
||||
|
||||
[[record]]
|
||||
hostname = "vbchaos.nl"
|
||||
entry = "@"
|
||||
ttl = 300
|
||||
type = "A"
|
||||
content = ""
|
||||
@@ -0,0 +1,5 @@
|
||||
FROM alpine:latest
|
||||
|
||||
RUN apk add --no-cache tzdata
|
||||
COPY go-transip-dyndns /usr/bin
|
||||
CMD ["/usr/bin/go-transip-dyndns", "update", "-k"]
|
||||
BIN
Binary file not shown.
Reference in New Issue
Block a user