Skip to content

S
services
Commit ad1f6e0b authored by nanahira's avatar nanahira
Browse files
Options

first

parents
Hide whitespace changes
Inline Side-by-side
Showing with 202 additions and 0 deletions
cdn/docker-compose.yml.j2 0 → 100644
View file @ ad1f6e0b
version: '2'
volumes:
{{volume_name}}:
services:
cdn:
restart: always
image: git-registry.mycard.moe/mycard/cdn-docker:plus
ulimits:
nproc: 1048576
nofile:
soft: 524288
hard: 1048576
ports:
- '2222:22'
{% if address %}
{% if use_http %}
- '{{address}}:80:80'
- '{{address}}:443:443'
{% endif %}
- '{{address}}:444:443'
- '{{address}}:9000:9000'
- '{{address}}:19000:19000'
- '{{address}}:19001:19001'
{% else %}
{% if use_http %}
- '80:80'
- '443:443'
{% endif %}
- '444:443'
- '9000:9000'
- '19000:19000'
- '19001:19001'
{% endif %}
volumes:
- {{volume_name}}:/etc/nginx
- {{cache_path}}:/tmp/cache
- {{log_path}}:/var/log/nginx
- /usr/share/zoneinfo/Asia/Shanghai:/etc/localtime:ro
frpc/docker-compose.yml.j2 0 → 100644
View file @ ad1f6e0b
version: '2.4'
services:
{% for instance in frpc_instances %}
'{{instance.name}}':
restart: always
image: fatedier/frpc:v0.34.2
network_mode: host
command: -c /frpc.ini
volumes:
- ./templates/frpc_{{instance.name}}.ini:/frpc.ini:ro
{% endfor %}
frpc/templates/frpc.ini.j2 0 → 100644
View file @ ad1f6e0b
[common]
server_addr = {{item.server_addr}}
server_port = {{item.server_port}}
tcp_mux = true
protocol = tcp
token = {{frp_token}}
[{{inventory_hostname_short}}_{{item.name}}]
privilege_mode = true
type = {{item.type}}
local_ip = {{item.local_ip}}
local_port = {{item.local_port}}
remote_port = {{item.remote_port}}
use_encryption = true
use_compression = true
frps/docker-compose.yml.j2 0 → 100644
View file @ ad1f6e0b
version: '2.4'
services:
frps:
restart: always
image: fatedier/frps:v0.34.2
network_mode: host
command: -c /frps.ini
volumes:
- ./templates/frps.ini:/frps.ini:ro
frps/templates/frps.ini.j2 0 → 100644
View file @ ad1f6e0b
[common]
bind_port = {{frps_port}}
token = {{frp_token}}
tcp_mux = true
mawangye/docker-compose.yml.j2 0 → 100644
View file @ ad1f6e0b
version: '2.4'
services:
{% for instance in instances %}
{{instance.name}}:
restart: always
image: git-registry.mycard.moe/nanahira/windbot
command: Chat=false Debug=false Deck=DarkMagician Host=s1.ygo233.com Port=23333 HostInfo={{instance.room}} Name={{instance.name}}
{% endfor %}
ocserv/data/dhparam.pem 0 → 100644
View file @ ad1f6e0b
-----BEGIN DH PARAMETERS-----
MIIBCAKCAQEAwgkW5I65xbV1f/2tvAPSf4FgFXts3JMMnfTq6/rghgMa+MLxHwat
zWsht65BiX68xyPSo1ZcHquiqQkL848XHsNSJJZLy6iarnA9t3vPeQJceKOCRlOS
qeeyfkFRnuogKZytL7gV0o9mkkU6rZ/9KABDTGOdW+cl2Da+lpn1bGJ6cL5NZp5r
g9RmcqTgHBqOobgXEPEYHjYDZ4QdirjgQvG0urztYxNzp4uHFsibv3M70POah+MM
BuD8qHcsEzVuNm0K03+FRjwe/05b+X41DA578yQUjxh0hJR3yFVilDKC92dadVYo
pORGmlM26m2fhy8ZMqrbvxjVSloXFbJOawIBAg==
-----END DH PARAMETERS-----
ocserv/data/users 0 → 120000
View file @ ad1f6e0b
/home/nanahira/ansible/hlsj-fileserver/output/smb/
\ No newline at end of file
ocserv/docker-compose.yml.j2 0 → 100644
View file @ ad1f6e0b
version: '2'
services:
ocserv:
image: git-registry.mycard.moe/nanahira/docker-ocserv
privileged: true
network_mode: host
restart: always
volumes:
- ./templates/ocserv.conf:/etc/ocserv/ocserv.conf:ro
- {{certs_path}}:/etc/ssl/railgun/certs:ro
- ./data/users/{{userdata_name}}/ocpasswd:/etc/ocserv/ocpasswd:ro
- ./data/dhparam.pem:/etc/ssl/railgun/dhparam.pem:ro
ocserv/templates/ocserv.conf.j2 0 → 100644
View file @ ad1f6e0b
auth = "plain[passwd=/etc/ocserv/ocpasswd]"
tcp-port = {{port}}
udp-port = {{port}}
run-as-user = nobody
run-as-group = daemon
socket-file = /run/ocserv.socket
server-cert = /etc/ssl/railgun/certs/fullchain.pem
server-key = /etc/ssl/railgun/certs/privkey.pem
dh-params = /etc/ssl/railgun/dhparam.pem
ca-cert = /etc/ssl/certs/ssl-cert-snakeoil.pem
isolate-workers = true
stats-report-time = 360
server-stats-reset-time = 604800
keepalive = 32400
dpd = 90
mobile-dpd = 1800
switch-to-tcp-timeout = 25
try-mtu-discovery = true
cert-user-oid = 0.9.2342.19200300.100.1.1
compression = true
no-compress-limit = 256
tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA:-VERS-SSL3.0:-ARCFOUR-128"
auth-timeout = 240
idle-timeout = 1200
mobile-idle-timeout = 1800
min-reauth-time = 300
max-ban-score = 80
ban-reset-time = 300
cookie-timeout = 86400
persistent-cookies = true
deny-roaming = false
rekey-time = 172800
rekey-method = ssl
use-occtl = true
pid-file = /run/ocserv.pid
device = ocs1
predictable-ips = true
ipv4-network = {{network}}
dns = {{dns}}
ping-leases = false
{% for net in routes %}
route = {{net}}
{% endfor %}
cisco-client-compat = true
dtls-legacy = true
outer-bird/templates/bird.conf.j2 0 → 100644
View file @ ad1f6e0b
log syslog all;
router id {{ansible_ssh_host}};
protocol device {}
{% for interface in interfaces %}
protocol direct {
ipv4;
interface "{{interface}}";
}
{% endfor %}
protocol ospf v2 {
ipv4 {
import all;
export where source ~ [ RTS_DEVICE, RTS_STATIC ];
};
area 0 {
networks {
{% for subnet in networks %}
{% endfor %}
};
{% for interface in interfaces %}
interface "{{interface}}" {
type broadcast;
cost 1;
hello 5;
};
{% endfor %}
};
}
radius/data/radius/clients.conf 0 → 100644
View file @ ad1f6e0b
client default {
ipaddr = 0.0.0.0/0
secret = aj46y3t4qegrhte
}
radius/data/radius/users 0 → 120000
View file @ ad1f6e0b
/home/nanahira/ansible/hlsj-fileserver/output/hlsj-fileserver/radius-users
\ No newline at end of file
radius/docker-compose.yml.j2 0 → 100644
View file @ ad1f6e0b
version: '2'
services:
radius:
restart: always
image: freeradius/freeradius-server:latest
ports:
- 1812-1813:1812-1813/udp
volumes:
- ./data/radius/clients.conf:/etc/raddb/clients.conf:ro
- ./data/radius/users:/etc/raddb/mods-config/files/authorize:ro
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment