CoCalc -- wg-easy.yml

GitHub Repository: dockserver/dockserver
Path: blob/master/apps/selfhosted/wg-easy.yml
¹⁴⁴⁷ views
1
---
2
version: "3"
3
services:
4
  wg-easy:
5
    hostname: "wg-easy"
6
    container_name: "wg-easy"
7
    cap_add:
8
      - "NET_ADMIN"
9
      - "SYS_MODULE"
10
    environment:
11
      - "PGID=${ID}"
12
      - "PUID=${ID}"
13
      - "TZ=${TZ}"
14
      - "UMASK=${UMASK}"
15
      - "WG_HOST=wgeasy.${DOMAIN}"
16
      - "WG_PORT=51820"
17
      - "WG_PERSISTENT_KEEPALIVE=25"
18
      - "WG_DEFAULT_ADDRESS=10.8.0.x"
19
      - "WG_DEFAULT_DNS=1.1.1.1, 1.0.0.1"
20
      - "WG_ALLOWED_IPS=0.0.0.0/0"
21
    image: "weejewel/wg-easy:latest"
22
    restart: "${RESTARTAPP}"
23
    ports:
24
      - target: 51820
25
        published: 51820
26
        protocol: udp
27
        mode: host
28
    networks:
29
      - ${DOCKERNETWORK}
30
    security_opt:
31
      - "${SECURITYOPS}:${SECURITYOPSSET}"
32
    volumes:
33
      - "${APPFOLDER}/wireguard:/etc/wireguard:rw"
34
    sysctls:
35
      - net.ipv4.ip_forward=1
36
      - net.ipv4.conf.all.src_valid_mark=1
37
    labels:
38
      - "traefik.enable=true"
39
      - "traefik.docker.network=proxy"
40
      - "dockupdater.enable=true"
41
      - "traefik.http.routers.wgeasy-rtr.entrypoints=https"
42
      - "traefik.http.routers.wgeasy-rtr.rule=Host(`wgeasy.${DOMAIN}`)"
43
      - "traefik.http.routers.wgeasy-rtr.tls=true"
44
      - "traefik.http.routers.wgeasy-rtr.tls.certresolver=dns-cloudflare"
45
      - "traefik.http.routers.wgeasy-rtr.middlewares=chain-authelia@file"
46
      - "traefik.http.routers.wgeasy-rtr.service=wgeasy-svc"
47
      - "traefik.http.services.wgeasy-svc.loadbalancer.server.port=51821"
48
networks:
49
  proxy:
50
    driver: bridge
51
    external: true
52

53
Product

Resources

Company
