Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/fredliang44/derper-docker

tailscale‘s selfhosted derp-server docker image
https://github.com/fredliang44/derper-docker

amd64 arm64 derp derper docker tailscale

Last synced: 5 days ago
JSON representation

tailscale‘s selfhosted derp-server docker image

Host: GitHub
URL: https://github.com/fredliang44/derper-docker
Owner: fredliang44
License: gpl-3.0
Created: 2021-09-25T09:50:14.000Z (about 3 years ago)
Default Branch: main
Last Pushed: 2024-07-15T04:26:28.000Z (4 months ago)
Last Synced: 2024-08-01T12:15:41.198Z (3 months ago)
Topics: amd64, arm64, derp, derper, docker, tailscale
Language: Dockerfile
Homepage: https://tailscale.com/kb/1118/custom-derp-servers/
Size: 27.3 KB
Stars: 254
Watchers: 5
Forks: 67
Open Issues: 7
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-starred - fredliang44/derper-docker - tailscale‘s selfhosted derp-server docker image (docker)

README

        # Derper

[![docker workflow](https://github.com/fredliang44/derper-docker/actions/workflows/docker-image.yml/badge.svg)](https://hub.docker.com/r/fredliang/derper)

[![docker pulls](https://img.shields.io/docker/pulls/fredliang/derper.svg?color=brightgreen)](https://hub.docker.com/r/fredliang/derper)

[![platfrom](https://img.shields.io/badge/platform-amd64%20%7C%20arm64-brightgreen)](https://hub.docker.com/r/fredliang/derper/tags)

# Setup

> required: set env `DERP_DOMAIN` to your domain

```bash

docker run -e DERP_DOMAIN=derper.your-domain.com -p 80:80 -p 443:443 -p 3478:3478/udp fredliang/derper

```

| env                    | required | description                                                                 | default value     |

| -------------------    | -------- | ----------------------------------------------------------------------      | ----------------- |

| DERP_DOMAIN            | true     | derper server hostname                                                      | your-hostname.com |

| DERP_CERT_DIR          | false    | directory to store LetsEncrypt certs(if addr's port is :443)                | /app/certs        |

| DERP_CERT_MODE         | false    | mode for getting a cert. possible options: manual, letsencrypt              | letsencrypt       |

| DERP_ADDR              | false    | listening server address                                                    | :443              |

| DERP_STUN              | false    | also run a STUN server                                                      | true              |

| DERP_STUN_PORT         | false    | The UDP port on which to serve STUN.                                        | 3478              |

| DERP_HTTP_PORT         | false    | The port on which to serve HTTP. Set to -1 to disable                       | 80                |

| DERP_VERIFY_CLIENTS    | false    | verify clients to this DERP server through a local tailscaled instance      | false             |

| DERP_VERIFY_CLIENT_URL | false    | if non-empty, an admission controller URL for permitting client connections | ""                |

# Usage

Fully DERP setup offical documentation: https://tailscale.com/kb/1118/custom-derp-servers/

## Client verification

In order to use `DERP_VERIFY_CLIENTS`, the container needs access to Tailscale's Local API, which can usually be accessed through `/var/run/tailscale/tailscaled.sock`. If you're running Tailscale bare-metal on Linux, adding this to the `docker run` command should be enough: `-v /var/run/tailscale/tailscaled.sock:/var/run/tailscale/tailscaled.sock`