infrastructure/ansible/plays/services/wireguard/docker-compose.yaml

---
version: '3.9'

services:
  wireguard:
    image: registry.tobiasmanske.de/wireguard:latest
    container_name: wireguard
    cap_add:
      - NET_ADMIN
    security_opt:
      - label:disable
    environment:
      - PUID=1000
      - PGID=1000
      - TZ=Europe/Berlin
    volumes:
      - ./wg0.conf:/etc/wireguard/wg0.conf:ro,z
    ports:
      - 51820:51820/udp
    sysctls:
      - net.ipv4.conf.all.src_valid_mark=1
      - net.ipv6.conf.all.disable_ipv6=0
    restart: unless-stopped
    networks:
      - default
      - internal_services

networks:
  internal_services:
    name: internal_services
    internal: true
...
Initial Signed-off-by: Tobias Manske <tobias.manske@mailbox.org> 2022-06-18 14:12:12 +02:00			`---`
			`version: '3.9'`
Pin wireguard version as latest is currently buggy 2022-10-07 09:56:50 +02:00
Initial Signed-off-by: Tobias Manske <tobias.manske@mailbox.org> 2022-06-18 14:12:12 +02:00			`services:`
			`wireguard:`
Wireguard: New Container image 2023-03-09 12:51:53 +01:00			`image: registry.tobiasmanske.de/wireguard:latest`
Initial Signed-off-by: Tobias Manske <tobias.manske@mailbox.org> 2022-06-18 14:12:12 +02:00			`container_name: wireguard`
			`cap_add:`
			`- NET_ADMIN`
			`security_opt:`
			`- label:disable`
			`environment:`
			`- PUID=1000`
			`- PGID=1000`
			`- TZ=Europe/Berlin`
			`volumes:`
Wireguard: New Container image 2023-03-09 12:51:53 +01:00			`- ./wg0.conf:/etc/wireguard/wg0.conf:ro,z`
Initial Signed-off-by: Tobias Manske <tobias.manske@mailbox.org> 2022-06-18 14:12:12 +02:00			`ports:`
			`- 51820:51820/udp`
			`sysctls:`
			`- net.ipv4.conf.all.src_valid_mark=1`
			`- net.ipv6.conf.all.disable_ipv6=0`
			`restart: unless-stopped`
Pin wireguard version as latest is currently buggy 2022-10-07 09:56:50 +02:00			`networks:`
			`- default`
			`- internal_services`

			`networks:`
			`internal_services:`
			`name: internal_services`
			`internal: true`
Fix naming of yaml files 2022-08-08 23:55:41 +02:00			`...`