install.fairie/home/dot_config/docker/templates/wireguard.docker-stack.yml.tmpl

39 lines
855 B
Cheetah
Raw Normal View History

---
version: '3.8'
services:
wireguard:
image: lscr.io/linuxserver/wireguard:latest
container_name: WireGuard
cap_add:
- NET_ADMIN
- SYS_MODULE
environment:
PUID: 1000
PGID: 1000
TZ: "{{ .user.timezone }}"
SERVERURL: "{{ .docker.wireguard.serverUrl }}"
SERVERPORT: 51820
PEERS: 1
PEERDNS: auto
INTERNAL_SUBNET: "{{ .docker.wireguard.internalSubnet }}"
ALLOWEDIPS: "{{ .docker.wireguard.internalSubnet }}/24"
LOG_CONFS: true
volumes:
- /srv/stacks/wireguard:/config
- /lib/modules:/lib/modules
ports:
- 51820:51820/udp
sysctls:
- net.ipv4.conf.all.src_valid_mark=1
restart: unless-stopped
deploy:
mode: global
networks:
agent_network:
driver: overlay
attachable: true
nginx_network:
external: true