Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/aventer-ug/docker-ispconfig


https://github.com/aventer-ug/docker-ispconfig

docker ispconfig

Last synced: 24 days ago
JSON representation

Awesome Lists containing this project

README

        

# ISPConfig3 in a docker container


![Docker Pulls](https://img.shields.io/docker/pulls/avhost/docker-ispconfig)

This docker image include a whole ISPConfig3 software stack. For details, I'm sorry have a look in the Dockerfile. Later I will write down all installed packages.

## How to use it

First, have a look at the following docker-compose file to get an idea.

```yaml
version: '3'

services:
master:
image: mariadb
command: --max_allowed_packet=32505856
restart: always
volumes:
- /data/db:/var/lib/mysql
networks:
- default
hostname: master.weave.local
environment:
MYSQL_ROOT_PASSWORD:

server1:
image: avhost/docker-ispconfig:latest
ports:
- "443:443"
- "80:80"
volumes: ["/data/amavis:/var/lib/amavis","/data/etc/amavis:/etc/amavis", "/data/letsencrypt:/etc/letsencrypt", "/data/etc/apache2/sites-available:/etc/apache2/sites-available", "/data/etc/apache2/sites-enabled:/etc/apache2/sites-enabled", "/data/www:/var/www/", "/data/backup:/var/backup/", "/data/usr:/usr/local/ispconfig", "/data/etc/cron.d:/etc/cron.d", "/data/kis/bind:/etc/bind", "/data/mail:/var/vmail/"]
restart: always
depends_on:
- master
networks:
- default
hostname: server1.weave.local
cap_add:
- NET_ADMIN
- NET_RAW
environment:
isp_mysql_hostname: "master.weave.local"
isp_mysql_root_password: ""
isp_mysql_ispconfig_password: ""
isp_admin_password: ""
isp_mysql_master_root_password: ""
isp_mysql_master_hostname: "master"
isp_enable_mail: "n"
isp_enable_jailkit: "n"
isp_enable_ftp: "n"
isp_enable_dns: "n"
isp_enable_apache: "y"
isp_enable_nginx: "y"
isp_enable_firewall: "y"
isp_enable_webinterface: "n"
isp_enable_multiserver: "n"
isp_hostname: "<$HOSTNAME>"
isp_use_ssl: "y"
isp_phpmyadmin_blowfish_secret: "advpDZ9wHZXkZSfV78DLRjzSPaTm5yBC"
isp_change_mail_server: "y"
isp_change_web_server: "y"
isp_change_dns_server: "y"
isp_change_xmpp_server: "y"
isp_change_firewall_server: "y"
isp_change_vserver_server: "y"
isp_change_db_server: "y"

networks:
default:
external:
name: weave
```

Next, some words to say. If you will deploy a docker container with this image for the first time, it will not work if you persist already all the data (like above). First, just mount /var/backup inside of the container, start the container and then copy all the needed files/directories ONE TIME into the backup directory. Then shutdown the container, and persist the data like above with all the files you copied into the backup directory. Thats just a one time job. :-) Why you have to do it! As example, bind, amavis, postfix, all these packages have default files. If you persist from the beginging, the default files will not be there and the services will crash.

## Persist Data

There are some directories and files its easier if you don't persist them. As example:

- /etc/passwd
- /etc/shadow
- /etc/group
- /var/log/ispconfig

Specialy the system authentication files makes only problems if you try to persist them. Docker cannot handle a group/useradd on mounted auth files. To recreate the web/client users from ispconfig, you have to login into the webinterface, go to "Configuration", there on "resync" and then resync the "Websites" on the container you restarted. Thats it!

## The idea behind

The idea behind this images is the flexibility to move the whole ISPConfig Container, with the data, with the config, as is, to a other server if you have to update or migrate the host system. Use this container as the "Real Server", and the Server where its running, just as a host system. This image should give you a posibility to maintain and fix your whole ISPConfig infrastructure very fast.

## Multiuser Environment

Yes its working! We are using it with weave.works and docker-compose. At the host system is dnsmasq to seperate the weave dns resolution from the external one and the one inside of the container.

## What it is not

It's definitly not a microservice. :-) So, you cannot recreate the running container like you want and to everytime. You need a downtime, and maybe you also have so cleanup a little bit after you restart the container.