e

Merge branch 'dev' into prod
feat: update WireGuard service configuration; switch to linuxserver/wireguard image and adjust environment variables
2026-01-20 20:33:41 +01:00 · 2026-01-20 20:33:31 +01:00 · 2026-01-20 20:32:31 +01:00
2 changed files with 17 additions and 48 deletions
--- a/dnsmasq.conf
+++ b/dnsmasq.conf
@@ -1,15 +0,0 @@
-# DNS-Server für ca-lose VPN-Clients
-# Upstream DNS für externe Anfragen
-server=1.1.1.1
-server=8.8.8.8
-
-# Kein DHCP, nur DNS
-no-dhcp-interface=
-
-# Logging
-log-queries
-
-# Interne Hostnamen
-address=/lose-verkaufen/172.25.0.10
-address=/ca-lose-frontend/172.25.0.10
-address=/ca-lose-backend/172.25.0.11
--- a/docker-compose.prod.yml
+++ b/docker-compose.prod.yml
@@ -4,8 +4,7 @@ services:
    hostname: lose-verkaufen
    build: ./frontend
    networks:
-      ca-lose-internal:
-        ipv4_address: 172.25.0.10
+      - ca-lose-internal
    restart: unless-stopped

  backend:
@@ -20,8 +19,7 @@ services:
    depends_on:
      - database
    networks:
-      ca-lose-internal:
-        ipv4_address: 172.25.0.11
+      - ca-lose-internal
    restart: unless-stopped

  database:
@@ -38,47 +36,35 @@ services:
    networks:
      - ca-lose-internal

-  dns:
-    container_name: ca-lose-dns
-    image: jpillora/dnsmasq
-    restart: unless-stopped
-    volumes:
-      - ./dnsmasq.conf:/etc/dnsmasq.conf:ro
-    networks:
-      ca-lose-internal:
-        ipv4_address: 172.25.0.5
-
  wireguard:
    image: lscr.io/linuxserver/wireguard:latest
-    container_name: ca-lose-wireguard
+    container_name: wireguard
    cap_add:
      - NET_ADMIN
-      - SYS_MODULE
+      - SYS_MODULE #optional
    environment:
      - PUID=1000
      - PGID=1000
-      - TZ=Europe/Berlin
-      - SERVERURL=dus3.the1s.de
-      - SERVERPORT=51830
-      - PEERS=2
-      - PEERDNS=172.25.0.5
-      - INTERNAL_SUBNET=10.13.13.0
-      - ALLOWEDIPS=172.25.0.0/24
-      - PERSISTENTKEEPALIVE_PEERS=25
-      - LOG_CONFS=true
-      - POST_UP=iptables -t nat -A POSTROUTING -s 10.13.13.0/24 -o eth0 -j MASQUERADE
-      - POST_DOWN=iptables -t nat -D POSTROUTING -s 10.13.13.0/24 -o eth0 -j MASQUERADE
+      - TZ=Etc/UTC
+      - SERVERURL=dus3.the1s.de #optional
+      - SERVERPORT=51830 #optional
+      - PEERS=2 #optional
+      - PEERDNS=auto #optional
+      - INTERNAL_SUBNET=10.13.13.0 #optional
+      - ALLOWEDIPS=0.0.0.0/0 #optional
+      - PERSISTENTKEEPALIVE_PEERS= #optional
+      - LOG_CONFS=true #optional
    volumes:
-      - ./wireguard-config:/config
-      - /lib/modules:/lib/modules
+      - ./config:/config
+      - /lib/modules:/lib/modules #optional
    ports:
      - 51830:51830/udp
    sysctls:
      - net.ipv4.conf.all.src_valid_mark=1
    restart: unless-stopped
    networks:
-      - ca-lose-internal
-      - proxynet
+      ca-lose-internal:
+        ipv4_address: 172.25.0.10

 volumes:
  ca-lose_mysql:
@@ -90,5 +76,3 @@ networks:
    ipam:
      config:
        - subnet: 172.25.0.0/24
-  proxynet:
-    external: true
Author	SHA1	Message	Date
Theis	e346cf9445	e	2026-01-20 20:33:41 +01:00
Theis	c030b6dbe6	Merge branch 'dev' into prod	2026-01-20 20:33:31 +01:00
Theis	c3881b93ec	feat: update WireGuard service configuration; switch to linuxserver/wireguard image and adjust environment variables	2026-01-20 20:32:31 +01:00