Initial commit

2022-03-24 14:59:30 +00:00
commit 79f086ad23
5 changed files with 178 additions and 0 deletions
--- a/README.md
+++ b/README.md
--- a/firewall_loadbalancer_wireguard_postrouting-27dhuwdh.json
+++ b/firewall_loadbalancer_wireguard_postrouting-27dhuwdh.json
@@ -0,0 +1,55 @@
+{
+	"main": {
+		"SERVICE_NAME": "firewalls",
+		"DOMAIN": "null" 
+	},
+	"containers": [
+		{ 
+			"IMAGE": "registry.format.hu/firewall",
+			"NAME": "firewall_loadbalancer_wireguard_postrouting-27dhuwdh",
+			"MEMORY": "64M",
+			"IP": "null",
+			"NETWORK": "host",
+			"VOLUMES": [
+                                {
+                                "SOURCE": "/var/run/docker.sock",
+                                "DEST": "/var/run/docker.sock",
+                                "TYPE": "rw"
+                                },
+                                {
+                                "SOURCE": "/usr/bin/docker",
+                                "DEST": "/usr/bin/docker",
+                                "TYPE": "ro"
+                                },
+				{
+				"SOURCE": "/run/",
+				"DEST": "/run/",
+				"TYPE": "rw"
+				},
+				{
+				"SOURCE": "/proc/",
+				"DEST": "/proc/",
+				"TYPE": "ro"
+				},
+				{
+				"SOURCE": "/etc/user/config/services",
+				"DEST": "/services",
+				"TYPE": "ro"
+				}
+				],
+			"PORTS": [ ],
+			"READYNESS": [
+			        {"tcp": ""},
+			        {"HTTP": ""},
+				{"EXEC": "/ready.sh"}
+				],
+                        "ENV_FILES": [ "/etc/user/config/wireguard-proxy.json" ],
+			"EXTRA": "--privileged",
+			"DEPEND": "null",
+			"START_ON_BOOT": "false",
+			"CMD": "null",
+			"PRE_START": "null",
+			"POST_START": "null"
+		}
+	]
+}
--- a/firewall_loadbalancer_wireguard_prerouting-27dhuwdh.json
+++ b/firewall_loadbalancer_wireguard_prerouting-27dhuwdh.json
@@ -0,0 +1,55 @@
+{
+	"main": {
+		"SERVICE_NAME": "firewalls",
+		"DOMAIN": "null" 
+	},
+	"containers": [
+		{ 
+			"IMAGE": "registry.format.hu/firewall",
+			"NAME": "firewall_loadbalancer_wireguard_prerouting-27dhuwdh",
+			"MEMORY": "64M",
+			"IP": "null",
+			"NETWORK": "host",
+			"VOLUMES": [
+                                {
+                                "SOURCE": "/var/run/docker.sock",
+                                "DEST": "/var/run/docker.sock",
+                                "TYPE": "rw"
+                                },
+                                {
+                                "SOURCE": "/usr/bin/docker",
+                                "DEST": "/usr/bin/docker",
+                                "TYPE": "ro"
+                                },
+				{
+				"SOURCE": "/run/",
+				"DEST": "/run/",
+				"TYPE": "rw"
+				},
+				{
+				"SOURCE": "/proc/",
+				"DEST": "/proc/",
+				"TYPE": "ro"
+				},
+				{
+				"SOURCE": "/etc/user/config/services",
+				"DEST": "/services",
+				"TYPE": "ro"
+				}
+				],
+			"PORTS": [ ],
+			"READYNESS": [
+			        {"tcp": ""},
+			        {"HTTP": ""},
+				{"EXEC": "/ready.sh"}
+				],
+                        "ENV_FILES": [ "/etc/user/config/wireguard-proxy.json" ],
+			"EXTRA": "--privileged",
+			"DEPEND": "null",
+			"START_ON_BOOT": "false",
+			"CMD": "null",
+			"PRE_START": "null",
+			"POST_START": "null"
+		}
+	]
+}
--- a/wireguard-proxy-client.json
+++ b/wireguard-proxy-client.json
@@ -0,0 +1,44 @@
+{
+	"main": {
+		"SERVICE_NAME": "wireguard-client",
+		"DOMAIN": "null" 
+	},
+	"networks": [
+		{
+			"NAME": "wireguard-proxy-client",
+			"DRIVER": "bridge",
+			"SUBNET": "172.16.0.0/24",	
+			"RANGE": "172.16.0.0/24",
+			"GATEWAY": "172.16.0.1"
+		}
+	],
+	"containers": [
+		{ 
+			"IMAGE": "registry.format.hu/wireguard-server",
+			"NAME": "wireguard_proxy_client-edeg3e98",
+			"MEMORY": "64M",
+			"IP": "172.16.0.2",
+			"NETWORK": "wireguard-proxy-client",
+			"VOLUMES": [
+                                {   
+                                "SOURCE": "/etc/user/secret/wireguard-client/wg0.conf",
+                                "DEST": "/etc/wireguard/wg0.conf",
+                                "TYPE": "ro"
+                                } 
+				],
+			"PORTS": [ ],
+			"READYNESS": [
+			        {"tcp": ""},
+			        {"HTTP": ""},
+				{"EXEC": "/ready.sh"}
+				],
+                        "ENVS":  "null",
+                        "EXTRA": "--privileged --cap-add=NET_ADMIN --device=/dev/net/tun --cap-add MKNOD --cap-add NET_RAW",
+                        "DEPEND": "null",
+                        "START_ON_BOOT": "true",
+                        "CMD": "null",			
+			"PRE_START": "null",
+			"POST_START": [ "firewall_loadbalancer_wireguard_prerouting-27dhuwdh", "firewall_loadbalancer_wireguard_postrouting-27dhuwdh" ]
+		}
+	]
+}
--- a/wireguard-proxy.json
+++ b/wireguard-proxy.json
@@ -0,0 +1,24 @@
+{
+	"firewall_loadbalancer_wireguard_prerouting": {
+		"NAME": "wireguard_proxy_client",
+		"PREROUTING": "true",
+		"SOURCE_IP": "10.0.1.1",
+		"TARGET_IP": "172.18.100.2",
+		"TYPE": "tcp",
+		"SOURCE_PORT_1": "80",
+		"SOURCE_PORT_2": "443",
+		"TARGET_PORT_1": "80",
+		"TARGET_PORT_2": "443",
+		"COMMENT": "edeg3e98"
+		},
+	"firewall_loadbalancer_wireguard_postrouting": {
+		"NAME": "wireguard_proxy_client",
+		"POSTROUTING": "true",
+		"TARGET_IP": "172.18.100.0",
+		"TARGET_PORT_1": "80",
+		"TARGET_PORT_2": "443",
+		"COMMENT": "edeg3e98"
+		}
+}
+
+