Linux 如何在docker中使用带wireguard的Pro Custodibus
我想使用,但我的wireguard服务器位于docker容器()上。如何配置PRo custodibus以加载和管理wireguard数据?您必须将PRo custodibus代理烘焙到包含wireguard的容器中 这里有一个Dockerfile:Linux 如何在docker中使用带wireguard的Pro Custodibus,linux,server,wireguard,Linux,Server,Wireguard,我想使用,但我的wireguard服务器位于docker容器()上。如何配置PRo custodibus以加载和管理wireguard数据?您必须将PRo custodibus代理烘焙到包含wireguard的容器中 这里有一个Dockerfile: # Dockerfile FROM ghcr.io/linuxserver/wireguard ENV DEBIAN_FRONTEND noninteractive RUN \ apt-get update && \
# Dockerfile
FROM ghcr.io/linuxserver/wireguard
ENV DEBIAN_FRONTEND noninteractive
RUN \
apt-get update && \
apt-get install -y libsodium23 python3-pip && \
rm -rf /var/lib/apt/lists/*
RUN \
mkdir -p /etc/services.d/procustodibus-agent && \
echo \
'#!/usr/bin/with-contenv bash\n' \
'exec procustodibus-agent --loop=120 --config=/config/procustodibus.conf\n' \
> /etc/services.d/procustodibus-agent/run && \
gpg --keyserver hkp://keys.gnupg.net --recv-keys EFC1AE969DD8159F
RUN \
cd /tmp && \
curl -O https://ad.custodib.us/agents/procustodibus-agent-latest.tar.gz && \
curl https://ad.custodib.us/agents/procustodibus-agent-latest.tar.gz.sig | \
gpg --verify - procustodibus-agent-latest.tar.gz && \
tar xf procustodibus-agent-latest.tar.gz && \
pip3 install procustodibus-agent-*/ && \
rm -rf /tmp/*
它:
# docker-compose.yml
---
version: "2.1"
services:
wireguard:
build: .
container_name: wireguard
cap_add:
- NET_ADMIN
- SYS_MODULE
environment:
- PUID=1000
- PGID=1000
- TZ=Etc/UTC
volumes:
- ./config:/config
- /lib/modules:/lib/modules
ports:
- 51820:51820/udp
sysctls:
- net.ipv4.conf.all.src_valid_mark=1
您可以将WireGuard和Pro Custodibus配置文件放在与Dockerfile和docker-compose.yml文件处于同一级别的config
目录中,然后运行docker compose up
:
$ tree
.
├── docker-compose.yml
├── Dockerfile
└── config
├── procustodibus.conf
├── procustodibus-setup.conf
└── wg0.conf
$ sudo docker-compose up
Creating network "docker-wireguard_default" with the default driver
Building wireguard
Step 1/5 : FROM ghcr.io/linuxserver/wireguard
...
Successfully built e4b8b8e8f2e3
Successfully tagged docker-wireguard_wireguard:latest
WARNING: Image for service wireguard was built because it did not already exist. To rebuild this image you must use `docker-compose build` or `docker-compose up --build`.
Creating wireguard ... done
Attaching to wireguard
wireguard | [s6-init] making user provided files available at /var/run/s6/etc...exited 0.
...
wireguard | [#] ip link set mtu 1420 up dev wg0