Virtuelle System für Docker vorbereiten: Difference between revisions
Created page with "Dies ist die Basis für spätere Docker Container: (Beim Mail-Account und Hostname die entsprechenden Anpassungen vornehmen) apt update apt upgrade apt install git pkg-config libssl-dev curl mc argon2 ca-certificates net-tools install -m 0755 -d /etc/apt/keyrings curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc chmod a+r /etc/apt/keyrings/docker.asc echo \ "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/do..." |
No edit summary |
||
| Line 1: | Line 1: | ||
Dies ist die Basis für spätere Docker Container: (Beim Mail-Account und Hostname die entsprechenden Anpassungen vornehmen) | Dies ist die Basis für spätere Docker Container: (Beim Mail-Account und Hostname die entsprechenden Anpassungen vornehmen) | ||
apt update | apt update | ||
apt upgrade | apt upgrade | ||
apt install git pkg-config libssl-dev curl mc argon2 ca-certificates net-tools | apt install git pkg-config libssl-dev curl mc argon2 ca-certificates net-tools | ||
install -m 0755 -d /etc/apt/keyrings | |||
curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc | |||
chmod a+r /etc/apt/keyrings/docker.asc | |||
echo \ | |||
"deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu \ | |||
$(. /etc/os-release && echo "$VERSION_CODENAME") stable" | \ | |||
sudo tee /etc/apt/sources.list.d/docker.list > /dev/null | |||
echo \ | |||
apt-get update | apt-get update | ||
apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin | apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin | ||
apt install docker-compose | apt install docker-compose | ||
echo "{" > /etc/docker/daemon.json | echo "{" > /etc/docker/daemon.json | ||
echo ' "iptables": false' >> /etc/docker/daemon.json | echo ' "iptables": false' >> /etc/docker/daemon.json | ||
echo "}" >> /etc/docker/daemon.json | echo "}" >> /etc/docker/daemon.json | ||
systemctl restart docker | systemctl restart docker | ||
sed -i -e 's/DEFAULT_FORWARD_POLICY="DROP"/DEFAULT_FORWARD_POLICY="ACCEPT"/g' /etc/default/ufw | sed -i -e 's/DEFAULT_FORWARD_POLICY="DROP"/DEFAULT_FORWARD_POLICY="ACCEPT"/g' /etc/default/ufw | ||
ufw reload | ufw reload | ||
iptables -t nat -A POSTROUTING ! -o docker0 -s 172.18.0.0/16 -j MASQUERADE | iptables -t nat -A POSTROUTING ! -o docker0 -s 172.18.0.0/16 -j MASQUERADE | ||
ufw allow in on docker0 | ufw allow in on docker0 | ||
ufw route allow in on docker0 | ufw route allow in on docker0 | ||
ufw route allow out on docker0 | ufw route allow out on docker0 | ||
docker run hello-world | docker run hello-world | ||
ufw allow 443 | ufw allow 443 | ||
ufw allow 80 | ufw allow 80 | ||
ufw allow 22 | ufw allow 22 | ||
ufw enable | ufw enable | ||
# Add root to the /etc/aliases file and add the msmtprc file to /etc | # Add root to the /etc/aliases file and add the msmtprc file to /etc | ||
apt -y install msmtp msmtp-mta mailutils | apt -y install msmtp msmtp-mta mailutils | ||
hostname keys.neuro.uni-bremen.de | hostname keys.neuro.uni-bremen.de | ||
cat /etc/hostname | cat /etc/hostname | ||
echo "root: davrot@neuro.uni-bremen.de" > /etc/aliases | echo "root: davrot@neuro.uni-bremen.de" > /etc/aliases | ||
echo "defaults" > /etc/msmtprc | echo "defaults" > /etc/msmtprc | ||
echo "tls on" >> /etc/msmtprc | echo "tls on" >> /etc/msmtprc | ||
Revision as of 16:26, 1 October 2025
Dies ist die Basis für spätere Docker Container: (Beim Mail-Account und Hostname die entsprechenden Anpassungen vornehmen)
apt update apt upgrade apt install git pkg-config libssl-dev curl mc argon2 ca-certificates net-tools install -m 0755 -d /etc/apt/keyrings curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc chmod a+r /etc/apt/keyrings/docker.asc
echo \ "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu \ $(. /etc/os-release && echo "$VERSION_CODENAME") stable" | \ sudo tee /etc/apt/sources.list.d/docker.list > /dev/null apt-get update apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin apt install docker-compose echo "{" > /etc/docker/daemon.json echo ' "iptables": false' >> /etc/docker/daemon.json echo "}" >> /etc/docker/daemon.json systemctl restart docker sed -i -e 's/DEFAULT_FORWARD_POLICY="DROP"/DEFAULT_FORWARD_POLICY="ACCEPT"/g' /etc/default/ufw ufw reload iptables -t nat -A POSTROUTING ! -o docker0 -s 172.18.0.0/16 -j MASQUERADE ufw allow in on docker0 ufw route allow in on docker0 ufw route allow out on docker0 docker run hello-world ufw allow 443 ufw allow 80 ufw allow 22 ufw enable # Add root to the /etc/aliases file and add the msmtprc file to /etc apt -y install msmtp msmtp-mta mailutils hostname keys.neuro.uni-bremen.de cat /etc/hostname echo "root: davrot@neuro.uni-bremen.de" > /etc/aliases
echo "defaults" > /etc/msmtprc echo "tls on" >> /etc/msmtprc echo "tls_starttls off" >> /etc/msmtprc echo "tls_certcheck off" >> /etc/msmtprc echo "tls_trust_file /etc/ssl/certs/ca-certificates.crt" >> /etc/msmtprc echo "logfile /var/log/msmtp.log" >> /etc/msmtprc echo "" >> /etc/msmtprc echo "# University SMTP server" >> /etc/msmtprc echo "account uni-bremen" >> /etc/msmtprc echo "host smtp.uni-bremen.de" >> /etc/msmtprc echo "port 465" >> /etc/msmtprc echo "from overleaf@uni-bremen.de" >> /etc/msmtprc echo "user overleaf" >> /etc/msmtprc echo "password REDACTED" >> /etc/msmtprc echo "set_from_header on" >> /etc/msmtprc echo "auth on" >> /etc/msmtprc echo "" >> /etc/msmtprc echo "# Set a default account" >> /etc/msmtprc echo "account default : uni-bremen" >> /etc/msmtprc echo "" >> /etc/msmtprc echo "aliases /etc/aliases" >> /etc/msmtprc chmod 644 /etc/msmtprc touch /var/log/msmtp.log ln -s /usr/bin/msmtp /usr/sbin/sendmail echo "Test message" | mail -s "Test subject" root