Docker

Docker - IPv6

got Docker running with Traefik as ingress Loadbalancer ? Just enable IPv6 like this. daemon.json cat << EOF > /etc/docker/daemon.json { "ipv6": true, "fixed-cidr-v6": "2001:db8:1::/64" } EOF Restart Services systemctl reload docker Check Netstat # netstat -tulpen |grep docker tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 0 15788 977/docker-proxy tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 0 17495 952/docker-proxy tcp6 0 0 :::80 :::* LISTEN 0 15791 984/docker-proxy tcp6 0 0 :::443 :::* LISTEN 0 15773 963/docker-proxy Any Comments ?

Anycast - Checker

When is an anycast ip an anycast ip ? that’s a question i was asked recently. As LTNN (Long Term Networking Nerd), i’m aware of Unicast, Multicast, Broadcast and also Anycast. so, let’s have a look into this. hint: this article is not about how to setup your own anycast network. this may follow soon ?!? Terminologie Unicast 1:1 Sending a message from one sender to one recipient Multicast 1:many Sending a message from one sender to multiple recipients

Docker - Swarm

Setup Let’s assume we have 3 Nodes in a Docker Swarm Setup. Tick Trick Track Track is the Leader/Manager. All Machines runs Debian 12.0 (RC, as it is not yet released) Show Nodes docker node ls root@track:~# docker node ls ID HOSTNAME STATUS AVAILABILITY MANAGER STATUS ENGINE VERSION b2zvkc374v08q2rpocljhkg5n tick Ready Active 23.0.2 khom3cx05bxqxktjq1k5j16gk * track Ready Active Leader 23.0.2 lq53s6mhuzvqrehks0j68sr3e trick Ready Active 23.0.2 Create Simple Service Run a simple Docker service that uses an alpine-based filesystem, and isolates a ping to 8.

Ciphey

Ciphey Fully automated decryption/decoding/cracking tool using natural language processing & artificial intelligence, along with some common sense. Source: https://github.com/Ciphey/Ciphey Run in Docker encoding=$(echo -n "hello world" |base64); docker run -it --rm remnux/ciphey ${encoding} Result Possible plaintext: 'hello world' (y/N): y ╭─────────────────────────────────╮ │ Formats used: │ │ base64 │ │ utf8Plaintext: "hello world" │ ╰─────────────────────────────────╯ Supported Ciphers Ciphey currently supports 51 encryptions, encodings, compression methods, and hashes. https://github.com/Ciphey/Ciphey/wiki/Supported-Ciphers Any Comments ? sha256: a33eac04129d4cf6bedce35c8b38c6f395a68fcf0a3e4ad7285caa6f249de7eb

Docker - Keycloak

KeyCloak Keycloak is an open source identity and access management solution. Requirements: Linux Host with Docker & Docker Compose Public IP Adress & FQDN Entry Port 80/443 open from any docker-compose.yml version: "3.7" services: sso: image: quay.io/keycloak/keycloak:21.0 container_name: "keycloak" volumes: - /etc/localtime:/etc/localtime:ro - ./keycloak.conf:/opt/keycloak/conf/keycloak.conf command: - start-dev environment: - KEYCLOAK_ADMIN=admin - KEYCLOAK_ADMIN_PASSWORD=XxXxXxXxXxXxXx - PROXY_ADDRESS_FORWARDING=true - VIRTUAL_HOST=keycloak.your.domain.de - VIRTUAL_PORT=8080 - LETSENCRYPT_HOST=keycloak.your.domain.de networks: - internal database: image: postgres:13 container_name: "postgres" environment: - POSTGRES_USER=keycloak - POSTGRES_DATABASE=keycloak - POSTGRES_PASSWORD=XxXxXxXxXxXxXx volumes: - postgres_data:/var/lib/postgresql/data networks: - internal proxy: image: nginxproxy/nginx-proxy container_name: "nginx" ports: - "443:443" - "80:80" volumes: - conf:/etc/nginx/conf.

Docker - Authelia

About Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies. https://www.authelia.com/ Requirements Host with Public IP & Docker Running Port 80 & 443 Public Reachable FQDN pointing to your IP Adress. Best is a Wildcard Record like *.

Docker - Traefik Advanced

Intro After a Basic Setup with fix Configuration, here an example where we put some Variables in a “.env” File. Requirements: Linux Host with Docker see here, Public IP Adress and rechable Port 80 & 443 two FQDN pointing to your IP: traefik.yourdomain.de whoami.yourdomain.de Env Vars let’s run the following Commands which generates a “.env” File. It will also create a User “dashboard” and ask you twice for the Password

Caddy

Run Simple Secure Webserver in 20 sec assuming you have Docker Instance and wanna run a Secure Webserver in a few Seconds ? Here is an Example how todo it … Fireup Docker start a fresh and empty Container with Alpine Linux. Get a Shell. Docker will be removed when you leave the shell (–rm) docker run -it --rm -p 80:80 -p 443:443 --name alpine-ssl alpine /bin/sh Set FQDN this should point to your ip address …

Dotnet - Hello World

Running a WebApp in 5min ? ASP.NET Tutorial - Hello World in 5 minutes in a Language you never touched before … ? a Microsoft App running on Linux running in Docker running on macOS … ? Let’ give a try … Fireup Ubuntu via Docker, do Port Forward docker run -it -p 5123:5123 --name dotnet-hello ubuntu:latest add basics apt-get update && apt-get -y upgrade && apt-get -y install wget add dotnet wget https://packages.

Docker - Traefik

Intro Following a Working Example how to get Traefik and a few Dummy Containers running on Docker. If you wanna have a bit advanced Example and put some Variables in a “.env” File, you may wanna check this Post. Requirements Linux Host with Docker see here, Public IP Adress and rechable Port 80 & 443 two FQDN pointing to your IP: traefik.yourdomain.de whoami.yourdomain.de Docker Traefik Example cat << EOF > docker-compose.