ange/docker
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: mullvad wireguard

Browse Source
This commit is contained in:
AngeD 2023-12-23 18:18:42 +01:00
parent 9fe01dd93c
commit 35de8a683e
15 changed files with 63 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
_nginx/compose.yaml
View File

@ -11,7 +11,7 @@ services:
volumes: volumes:
- sites:/etc/nginx/conf.d/ - sites:/etc/nginx/conf.d/
- certs:/etc/letsencrypt/ - certs:/etc/letsencrypt/
- certbotroot:/var/www/certbot/:ro - certbotroot:/var/www/certbot/
networks: networks:
- nginx - nginx

2
matrix/TODO Normal file
View File

@ -0,0 +1,2 @@
message expiration
mail bridge?

4
mullvad/Dockerfile → mullvad_openvpn/Dockerfile
View File

@ -1,8 +1,10 @@
FROM docker.io/debian:12-slim FROM docker.io/debian:12-slim
WORKDIR /etc/openvpn/ WORKDIR /etc/openvpn/
ENV DEBIAN_FRONTEND=noninteractive
RUN apt-get update \ RUN apt-get update \
&& apt-get install -y --no-install-recommends \ && apt-get install -y --no-install-recommends \
openvpn \ openvpn \
&& rm -rf /var/lib/apt/lists/* && rm -rf /var/lib/apt/lists/*
COPY entrypoint.sh/ /usr/local/bin/
COPY openvpn/ /etc/openvpn/ COPY openvpn/ /etc/openvpn/
CMD ["openvpn", "--config", "mullvad_00.conf"] CMD ["entrypoint.sh"]

0
mullvad/compose.yaml → mullvad_openvpn/compose.yaml
View File

15
mullvad_openvpn/entrypoint.sh Executable file
View File

@ -0,0 +1,15 @@
#!/bin/bash -e
# See https://mullvad.net/en/help/socks5-proxy
SOCKS_IP='10.8.0.1'
for file in /etc/openvpn/*.conf; do
cat <<EOF >> "$file"
route-nopull
route 10.0.0.0 255.0.0.0
EOF
done
chmod +x /etc/openvpn/update-resolv-conf
exec openvpn --config "$(printf '%q\n' /etc/openvpn/*.conf | shuf -n1)"

0
mullvad/install_site → mullvad_openvpn/install_site
View File

0
mullvad/openvpn/.gitignore → mullvad_openvpn/openvpn/.gitignore vendored
View File

1
mullvad/openvpn/README.md → mullvad_openvpn/openvpn/README.md
View File

@ -1,2 +1 @@
Put your openvpn config here
https://mullvad.net/en/account/openvpn-config https://mullvad.net/en/account/openvpn-config

11
mullvad_wireguard/Dockerfile Normal file
View File

@ -0,0 +1,11 @@
FROM docker.io/debian:12-slim as base
ENV DEBIAN_FRONTEND=noninteractive
RUN apt-get update \
&& apt-get install -y --no-install-recommends \
iproute2 \
openresolv \
wireguard \
&& rm -rf /var/lib/apt/lists/*
COPY entrypoint.sh/ /usr/local/bin/
COPY wireguard/ /etc/wireguard/
CMD ["entrypoint.sh"]

10
mullvad_wireguard/compose.yaml Normal file
View File

@ -0,0 +1,10 @@
---
services:
mullvad:
build: .
restart: unless-stopped
network_mode: host
devices:
- /dev/net/
cap_add:
- NET_ADMIN

15
mullvad_wireguard/entrypoint.sh Executable file
View File

@ -0,0 +1,15 @@
#!/bin/bash -e
stopwg() {
wg-quick down "$CONF"
}
# See https://mullvad.net/en/help/socks5-proxy
SOCKS_IP='10.64.0.1'
CONF="$(printf '%q\n' /etc/wireguard/*.conf | shuf -n1)"
sed -i "s/^AllowedIPs.*/AllowedIPs = $SOCKS_IP/" /etc/wireguard/*.conf
wg-quick up "$CONF"
trap stopwg SIGHUP SIGINT SIGTERM
sleep infinity & wait

1
mullvad_wireguard/install_site Symbolic link
View File

@ -0,0 +1 @@
../_nginx/install_site

3
mullvad_wireguard/wireguard/.gitignore vendored Normal file
View File

@ -0,0 +1,3 @@
*
!.gitignore
!README.md

1
mullvad_wireguard/wireguard/README.md Normal file
View File

@ -0,0 +1 @@
https://mullvad.net/en/account/wireguard-config

2
searxng/.env
View File

@ -1,4 +1,4 @@
BASE_URL=searx. BASE_URL=searx.
EMAIL= EMAIL=
SEARXNG_SECRET= SEARXNG_SECRET= #$(openssl rand -hex 32)