Added smarthost-proxy files

2022-03-04 07:39:02 +01:00
commit 8d7733fa15
7 changed files with 600 additions and 0 deletions
--- a/firewall_backend1-zc93hh9u.json
+++ b/firewall_backend1-zc93hh9u.json
@@ -0,0 +1,69 @@
 {
 	"main": {
 		"SERVICE_NAME": "firewalls",
 		"DOMAIN": "null" 
 	},
 	"containers": [
 		{ 
 			"IMAGE": "registry.format.hu/firewall",
 			"NAME": "null",
 			"MEMORY": "64M",
 			"IP": "null",
 			"NETWORK": "host",
 			"VOLUMES": [
 				{
 				"SOURCE": "/run/",
 				"DEST": "/run/",
 				"TYPE": "rw"
 				},
 				{
 				"SOURCE": "/etc/user/config/services",
 				"DEST": "/services",
 				"TYPE": "ro"
 				}
 				],
 			"PORTS": [ ],
 			"READYNESS": [
 			        {"tcp": ""},
 			        {"HTTP": ""},
 				{"EXEC": "/ready.sh"}
 				],
                        "ENVS": [ 
                                {          
                                "NAME": "CHAIN",
                                "VALUE": "DOCKER-USER"
                                }, 
                                {          
                                "NAME": "SOURCE_IP",
                                "VALUE": "172.18.100.2"
                                }, 
                                {          
                                "NAME": "TARGET_IP",
                                "VALUE": "172.18.101.2"
                                }, 
                                {          
                                "NAME": "TYPE",
                                "VALUE": "tcp"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_1",
                                "VALUE": "80"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_2",
                                "VALUE": "443"
                                }, 
                                {          
                                "NAME": "COMMENT",
                                "VALUE": "zc93hh9u"
                                }  
                                ], 
 			"EXTRA": "--privileged",
 			"DEPEND": "null",
 			"START_ON_BOOT": "false",
 			"CMD": "null",
 			"PRE_START": "null",
 			"POST_START": "null"
 		}
 	]
 }
--- a/firewall_backend2-g4rg38gr83.json
+++ b/firewall_backend2-g4rg38gr83.json
@@ -0,0 +1,69 @@
 {
 	"main": {
 		"SERVICE_NAME": "firewalls",
 		"DOMAIN": "null" 
 	},
 	"containers": [
 		{ 
 			"IMAGE": "registry.format.hu/firewall",
 			"NAME": "null",
 			"MEMORY": "64M",
 			"IP": "null",
 			"NETWORK": "host",
 			"VOLUMES": [
 				{
 				"SOURCE": "/run/",
 				"DEST": "/run/",
 				"TYPE": "rw"
 				},
 				{
 				"SOURCE": "/etc/user/config/services",
 				"DEST": "/services",
 				"TYPE": "ro"
 				}
 				],
 			"PORTS": [ ],
 			"READYNESS": [
 			        {"tcp": ""},
 			        {"HTTP": ""},
 				{"EXEC": "/ready.sh"}
 				],
                        "ENVS": [
                                {          
                                "NAME": "CHAIN",
                                "VALUE": "DOCKER-USER"
                                }, 
                                {          
                                "NAME": "SOURCE_IP",
                                "VALUE": "172.18.100.2"
                                }, 
                                {          
                                "NAME": "TARGET_IP",
                                "VALUE": "172.18.102.2"
                                }, 
                                {          
                                "NAME": "TYPE",
                                "VALUE": "tcp"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_1",
                                "VALUE": "80"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_2",
                                "VALUE": "443"
                                }, 
                                {          
                                "NAME": "COMMENT",
                                "VALUE": "g4rg38gr83"
                                }  
                                ], 
 			"EXTRA": "--privileged",
 			"DEPEND": "null",
 			"START_ON_BOOT": "false",
 			"CMD": "null",
 			"PRE_START": "null",
 			"POST_START": "null"
 		}
 	]
 }
--- a/firewall_dns-behbeq37s6.json
+++ b/firewall_dns-behbeq37s6.json
@@ -0,0 +1,73 @@
 {
 	"main": {
 		"SERVICE_NAME": "firewalls",
 		"DOMAIN": "null" 
 	},
 	"containers": [
 		{ 
 			"IMAGE": "registry.format.hu/firewall",
 			"NAME": "null",
 			"MEMORY": "64M",
 			"IP": "null",
 			"NETWORK": "host",
 			"VOLUMES": [
 				{
 				"SOURCE": "/run/",
 				"DEST": "/run/",
 				"TYPE": "rw"
 				},
 				{
 				"SOURCE": "/etc/user/config/services",
 				"DEST": "/services",
 				"TYPE": "ro"
 				}
 				],
 			"PORTS": [ ],
 			"READYNESS": [
 			        {"tcp": ""},
 			        {"HTTP": ""},
 				{"EXEC": "/ready.sh"}
 				],
                        "ENVS": [
                                {          
                                "NAME": "CHAIN",
                                "VALUE": "DOCKER-USER"
                                }, 
                                {          
                                "NAME": "SOURCE_IP",
                                "VALUE": "172.18.100.2"
                                }, 
                                {          
                                "NAME": "TARGET_IP",
                                "VALUE": "172.18.255.2"
                                }, 
                                {          
                                "NAME": "TYPE",
                                "VALUE": "udp"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_1",
                                "VALUE": "53"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_2",
                                "VALUE": "67"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_3",
                                "VALUE": "68"
                                }, 
                                {          
                                "NAME": "COMMENT",
                                "VALUE": "behbeq37s6"
                                }  
                                ], 
 			"EXTRA": "--privileged",
 			"DEPEND": "null",
 			"START_ON_BOOT": "false",
 			"CMD": "null",
 			"PRE_START": "null",
 			"POST_START": "null"
 		}
 	]
 }
--- a/firewall_openvpn-27dhuwdi.json
+++ b/firewall_openvpn-27dhuwdi.json
@@ -0,0 +1,69 @@
 {
 	"main": {
 		"SERVICE_NAME": "firewalls",
 		"DOMAIN": "null" 
 	},
 	"containers": [
 		{ 
 			"IMAGE": "registry.format.hu/firewall",
 			"NAME": "null",
 			"MEMORY": "64M",
 			"IP": "null",
 			"NETWORK": "host",
 			"VOLUMES": [
 				{
 				"SOURCE": "/run/",
 				"DEST": "/run/",
 				"TYPE": "rw"
 				},
 				{
 				"SOURCE": "/etc/user/config/services",
 				"DEST": "/services",
 				"TYPE": "ro"
 				}
 				],
 			"PORTS": [ ],
 			"READYNESS": [
 			        {"tcp": ""},
 			        {"HTTP": ""},
 				{"EXEC": "/ready.sh"}
 				],
                        "ENVS": [
                                {          
                                "NAME": "CHAIN",
                                "VALUE": "DOCKER-USER"
                                }, 
                                {          
                                "NAME": "SOURCE_IP",
                                "VALUE": "172.22.0.2"
                                }, 
                                {          
                                "NAME": "TARGET_IP",
                                "VALUE": "172.18.100.2"
                                }, 
                                {          
                                "NAME": "TYPE",
                                "VALUE": "tcp"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_1",
                                "VALUE": "80"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_2",
                                "VALUE": "443"
                                }, 
                                {          
                                "NAME": "COMMENT",
                                "VALUE": "27dhuwdh"
                                }  
                                ], 
 			"EXTRA": "--privileged",
 			"DEPEND": "null",
 			"START_ON_BOOT": "false",
 			"CMD": "null",
 			"PRE_START": "null",
 			"POST_START": "null"
 		}
 	]
 }
--- a/firewall_wireguard-27dhuwdh.json
+++ b/firewall_wireguard-27dhuwdh.json
@@ -0,0 +1,69 @@
 {
 	"main": {
 		"SERVICE_NAME": "firewalls",
 		"DOMAIN": "null" 
 	},
 	"containers": [
 		{ 
 			"IMAGE": "registry.format.hu/firewall",
 			"NAME": "null",
 			"MEMORY": "64M",
 			"IP": "null",
 			"NETWORK": "host",
 			"VOLUMES": [
 				{
 				"SOURCE": "/run/",
 				"DEST": "/run/",
 				"TYPE": "rw"
 				},
 				{
 				"SOURCE": "/etc/user/config/services",
 				"DEST": "/services",
 				"TYPE": "ro"
 				}
 				],
 			"PORTS": [ ],
 			"READYNESS": [
 			        {"tcp": ""},
 			        {"HTTP": ""},
 				{"EXEC": "/ready.sh"}
 				],
                        "ENVS": [
                                {          
                                "NAME": "CHAIN",
                                "VALUE": "DOCKER-USER"
                                }, 
                                {          
                                "NAME": "SOURCE_IP",
                                "VALUE": "172.16.0.2"
                                }, 
                                {          
                                "NAME": "TARGET_IP",
                                "VALUE": "172.18.100.2"
                                }, 
                                {          
                                "NAME": "TYPE",
                                "VALUE": "tcp"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_1",
                                "VALUE": "80"
                                }, 
                                {          
                                "NAME": "TARGET_PORT_2",
                                "VALUE": "443"
                                }, 
                                {          
                                "NAME": "COMMENT",
                                "VALUE": "27dhuwdh"
                                }  
                                ], 
 			"EXTRA": "--privileged",
 			"DEPEND": "null",
 			"START_ON_BOOT": "false",
 			"CMD": "null",
 			"PRE_START": "null",
 			"POST_START": "null"
 		}
 	]
 }
--- a/proxy-dns.json
+++ b/proxy-dns.json
@@ -0,0 +1,66 @@
 {
 	"main": {
 		"SERVICE_NAME": "proxy-dns",
 		"DOMAIN": "null" 
 	},
 	"networks": [
 		{
 			"NAME": "proxy-dns",
 			"DRIVER": "bridge",
 			"SUBNET": "172.18.255.0/24",	
 			"RANGE": "172.18.255.0/24",
 			"GATEWAY": "172.18.255.1"
 		}
 	],
 	"containers": [
 		{ 
 			"IMAGE": "registry.format.hu/dnsmasq:latest",
 			"NAME": "proxy_dns-efhuh3g1",
 			"MEMORY": "64M",
 			"IP": "172.18.255.2",
 			"NETWORK": "proxy-dns",
 			"VOLUMES": [
 				{	
 				"SOURCE": "/etc/user/data/dnsmasq/",
 				"DEST": "/etc/dnsmasq.d/",
 				"TYPE": "ro"
 				},
 				{	
 				"SOURCE": "/etc/system/log/dnsmasq/",
 				"DEST": "/var/log/dnsmasq/",
 				"TYPE": "rw"
 				}
 				],
 			"PORTS": [ 
    				{
 				 "SOURCE": "null",
 				 "DEST": "53",
 				 "TYPE": "udp"
 				},
    				{
 				 "SOURCE": "null",
 				 "DEST": "67",
 				 "TYPE": "udp"
 				},
    				{
 				 "SOURCE": "null",
 				 "DEST": "68",
 				 "TYPE": "udp"
 				}
 				  ],
 			"READYNESS": [
 			        {"tcp": ""},
 			        {"HTTP": ""},
 				{"EXEC": "/ready.sh"}
 				],
 			"ENVS": [
 				],
 			"EXTRA": "null",
 			"DEPEND": "null",
 			"START_ON_BOOT": "true",
 			"CMD": "null",
 			"PRE_START": "null",
 			"POST_START": "null"
 		}
 	]
 }
--- a/public-proxy.json
+++ b/public-proxy.json
@@ -0,0 +1,185 @@
 {
 	"main": {
 		"SERVICE_NAME": "public-proxy",
 		"DOMAIN": "null" 
 	},
 	"networks": [
 		{
 			"NAME": "loadbalancer",
 			"DRIVER": "bridge",
 			"SUBNET": "172.18.100.0/24",	
 			"RANGE": "172.18.100.0/24",
 			"GATEWAY": "172.18.100.1"
 		},
 		{
 			"NAME": "backend-1",
 			"DRIVER": "bridge",
 			"SUBNET": "172.18.101.0/24",	
 			"RANGE": "172.18.101.0/24",
 			"GATEWAY": "172.18.101.1"
 		},
 		{
 			"NAME": "backend-2",
 			"DRIVER": "bridge",
 			"SUBNET": "172.18.102.0/24",	
 			"RANGE": "172.18.102.0/24",
 			"GATEWAY": "172.18.102.1"
 		}
 	],
 	"containers": [
 		{ 
 			"IMAGE": "registry.format.hu/haproxy:2.2.5",
 			"NAME": "loadbalancer-27dhuwdh",
 			"ROLES": "frontend-proxy",
 			"MEMORY": "128M",
 			"IP": "172.18.100.2",
 			"NETWORK": "loadbalancer",
 			"DNS": [ "172.18.255.2" ],
 			"ENVS": [
                                {   
                                "NAME": "letsencrypt",
                                "VALUE": "letsencrypt"
                                },  
                                {   
                                "NAME": "backend1",
                                "VALUE": "backend1"
                                },  
                                {   
                                "NAME": "backend2",
                                "VALUE": "backend2"
                                }   
                                ],  
                        "READYNESS": [
                                {"tcp": "80"},
                                {"HTTP": "8080"},
                                {"EXEC": "/ready.sh"}
                                ], 
 			"PORTS": [
    				{
 				 "SOURCE": "80",
 				 "DEST": "80",
 				 "TYPE": "tcp"
 				},
    				{
 				 "SOURCE": "443",
 				 "DEST": "443",
 				 "TYPE": "tcp"
 				}
 				 ],	
 			"VOLUMES": [
 				{	
 				"SOURCE": "/etc/system/log/public-proxy/loadbalancer",
 				"DEST": "/var/log/haproxy",
 				"TYPE": "rw"
 				}
 				],
 			"READYNESS": [
 			        {"tcp": "80"},
 			        {"HTTP": "8080"},
 				{"EXEC": "/ready.sh"}
 				],
 			"EXTRA": "--label ROLES=loadbalancer" ,
 			"DEPEND": [ "proxy-dns" ],
 			"START_ON_BOOT": "true",
 			"CMD": "null",
 			"PRE_START": [ "firewall_dns-behbeq37s6" ],
 			"POST_START": [ "firewall_wireguard-27dhuwdh", "firewall_openvpn-27dhuwdi" ]
 		},
 		{ 
 			"IMAGE": "registry.format.hu/nginx:1.21",
 			"NAME": "backend-zc93hh9u",
 			"ROLES": "backend-proxy",
 			"MEMORY": "64M",
 			"IP": "172.18.101.2",
 			"NETWORK": "backend-1",
 			"PORTS": [
    				{
 				 "SOURCE": "null",
 				 "DEST": "80",
 				 "TYPE": "tcp"
 				},
    				{
 				 "SOURCE": "null",
 				 "DEST": "443",
 				 "TYPE": "tcp"
 				}
 				 ],	
 			"VOLUMES": [
 				{	
 				"SOURCE": "/etc/system/config/public-proxy/nginx",
 				"DEST": "/etc/nginx/conf.d",
 				"TYPE": "ro"
 				},
 				{	
 				"SOURCE": "/etc/ssl/keys",
 				"DEST": "/etc/ssl/keys",
 				"TYPE": "ro"
 				},
 				{	
 				"SOURCE": "/etc/system/log/public-proxy/backend-1",
 				"DEST": "/var/log/nginx",
 				"TYPE": "rw"
 				}
 				],
 			"READYNESS": [
 			        {"tcp": "80"},
 			        {"HTTP": "8080"},
 				{"EXEC": "/ready.sh"}
 				],
 			"EXTRA": "null",
 			"DEPEND": "null",
 			"START_ON_BOOT": "true",
 			"CMD": "null",
 			"PRE_START": "null",
 			"POST_START": [ "firewall_backend1-zc93hh9u" ]
 		},
 		{ 
 			"IMAGE": "registry.format.hu/nginx:1.21",
 			"NAME": "backend-g4rg38gr83",
 			"ROLES": "backend-proxy",
 			"MEMORY": "64M",
 			"IP": "172.18.102.2",
 			"NETWORK": "backend-2",
 			"PORTS": [
    				{
 				 "SOURCE": "null",
 				 "DEST": "80",
 				 "TYPE": "tcp"
 				},
    				{
 				 "SOURCE": "null",
 				 "DEST": "443",
 				 "TYPE": "tcp"
 				}
 				 ],	
 			"VOLUMES": [
 				{	
 				"SOURCE": "/etc/system/config/public-proxy/nginx",
 				"DEST": "/etc/nginx/conf.d",
 				"TYPE": "ro"
 				},
 				{	
 				"SOURCE": "/etc/ssl/keys",
 				"DEST": "/etc/ssl/keys",
 				"TYPE": "ro"
 				},
 				{	
 				"SOURCE": "/etc/system/log/public-proxy/backend-2",
 				"DEST": "/var/log/nginx",
 				"TYPE": "rw"
 				}
 				],
 			"READYNESS": [
 			        {"tcp": "80"},
 			        {"HTTP": "8080"},
 				{"EXEC": "/ready.sh"}
 				],
 			"EXTRA": "null",
 			"DEPEND": "null",
 			"START_ON_BOOT": "true",
 			"CMD": "null",
 			"PRE_START": "null",
 			"POST_START": [ "firewall_backend2-g4rg38gr83" ]
 		}
 	]
 }