Skip to content
Snippets Groups Projects
Select Git revision
  • renovate/templates-pihole-pihole-2025.x
  • renovate/templates-php-8.x
  • renovate/templates-jordan-icinga2-2.x
  • renovate/templates-redis-8.x
  • renovate/templates-docker-28.x
  • renovate/templates-redis-7.x
  • renovate/templates-mariadb-10.x
  • renovate/templates-gitlab-gitlab-ce-18.x
  • renovate/templates-gitlab-gitlab-ce-17.x
  • renovate/migrate-config
  • renovate/templates-postgres-17.x
  • renovate/templates-node-22.x
  • renovate/templates-mariadb-11.x
  • renovate/templates-debian-12.x
  • renovate/templates-wordpress-6.x
  • renovate/templates-traefik-3.x
  • renovate/templates-nginx-1.x
  • renovate/templates-maxking-mailman-web-0.x
  • renovate/templates-maxking-mailman-core-0.x
  • renovate/templates-matthiasluedtke-iconserver-3.x
20 results
Blame Permalink
docker-compose.yml 1.12 KiB 
version: "3"

services:

  app:
    image: ghcr.io/freifunkmuc/wg-access-server:v0.10.1
    restart: always
    cap_add:
      - NET_ADMIN
    sysctls:
      net.ipv6.conf.all.disable_ipv6: 0
      net.ipv6.conf.all.forwarding: 1
    volumes:
      - "{{ basedir }}/data:/data"
    #   - "{{ basedir }}/config.yaml:/config.yaml" # if you have a custom config file
    ports:
    #  - "8000:8000/tcp"
      - "51820:51820/udp"
    devices:
      - "/dev/net/tun:/dev/net/tun"
    environment:
      - "WG_ADMIN_USERNAME=vpnadmin"
      - "WG_ADMIN_PASSWORD={{ wg_admin_pass }}"
      - "WG_WIREGUARD_PRIVATE_KEY={{ wg_private_key }}"
      - "WG_VPN_CIDRV6=0" # to disable IPv6
      - "WG_EXTERNAL_HOST={{ domain }}"
      - "WG_DNS_ENABLED=true"
      - "WG_DNS_UPSTREAM=10.0.0.1"
      - "WG_LOG_LEVEL=info"
    labels:
      - traefik.enable=true
      - traefik.http.routers.{{ servicename }}.rule=Host(`{{ domain }}`)
      - traefik.http.routers.{{ servicename }}.entrypoints=websecure
      - traefik.http.services.{{ servicename }}.loadbalancer.server.port=8000
    networks:
      - default
      - web


networks:
  web:
    external: true