Home Explore Help
Register Sign In
fphammerle
/
docker-onion-service
mirror of https://github.com/fphammerle/docker-onion-service
1
0
Fork 0
Files Issues 0 Wiki
Tree: c0108f3399
Branches Tags
docker-onion-se...
/
ansible-playbook.yml

ansible-playbook.yml 906 B
History Raw

123456789101112131415161718192021222324252627282930 
  1. - hosts: [some-host]
    2. 

  2.   become: true
    3. 

  3.   tasks:
    4. 

  4.   - docker_container:
    5. 

  5.       name: onion_service
    6. 

  6.       # object 3acef0d56536497ecf85ebdd017dd8d825be1d8d
    7. 

  7.       # tag docker/2.0.0-tor0.4.3.5-amd64
    8. 

  8.       image: docker.io/fphammerle/onion-service@sha256:4e64c5ddc1115b9c2fb1d6ea6ce6ac3cf77fbfb048257d9c8c3c71b4765611fb
    9. 

  9.       env:
    10. 

  10.         VIRTUAL_PORT: '80'
    11. 

  11.         TARGET: 1.2.3.4:8080
    12. 

  12.         # on v3.0.0:
    13. 

  13.         #NON_ANONYMOUS_SINGLE_HOP_MODE: '1'
    14. 

  14.       volumes:
    15. 

  15.       - onion_service_data:/var/lib/tor
    16. 

  16.       - onion_service_key:/onion-service
    17. 

  17.       mounts:
    18. 

  18.       - type: tmpfs
    19. 

  19.         target: /tmp # torrc
    20. 

  20.         # nosuid,nodev,noexec added by default
    21. 

  21.         tmpfs_mode: '1777'
    22. 

  22.         tmpfs_size: 4k
    23. 

  23.       read_only: yes
    24. 

  24.       cap_drop: [ALL]
    25. 

  25.       security_opts: [no-new-privileges]
    26. 

  26.       cpu_quota: 5000
    27. 

  27.       cpu_period: 10000
    28. 

  28.       memory: 128M
    29. 

  29.       restart_policy: unless-stopped
    30. 

  30.       state: started
    31.