martin/docker-qbittorrentvpn
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #61 from joe-p/remove_src_valid_mark

Browse Source 
Allow container to run wireguard without --privileged
This commit is contained in:
DyonR 2021-11-02 16:02:18 +01:00 committed by GitHub
commit 745980bd66
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
Dockerfile
View File

@ -208,6 +208,9 @@ RUN echo "deb http://deb.debian.org/debian/ buster non-free" > /etc/apt/sources.
/tmp/* \
/var/tmp/*
# Remove src_valid_mark from wg-quick
RUN sed -i /net\.ipv4\.conf\.all\.src_valid_mark/d `which wg-quick`
VOLUME /config /downloads
ADD openvpn/ /etc/openvpn/

4
README.md
View File

@ -24,13 +24,15 @@ The container is available from the Docker registry and this is the simplest way
To run the container use this command, with additional parameters, please refer to the Variables, Volumes, and Ports section:
```
$ docker run --privileged -d \
$ docker run -d \
-v /your/config/path/:/config \
-v /your/downloads/path/:/downloads \
-e "VPN_ENABLED=yes" \
-e "VPN_TYPE=wireguard" \
-e "LAN_NETWORK=192.168.0.0/24" \
-p 8080:8080 \
--cap-add NET_ADMIN \
--sysctl "net.ipv4.conf.all.src_valid_mark=1" \
--restart unless-stopped \
dyonr/qbittorrentvpn
```