Skip to content

Crec0/docker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

54 Commits
authelia
authelia
 
 
beszel
beszel
 
 
bytebase
bytebase
 
 
code-server
code-server
 
 
dashboard
dashboard
 
 
diun
diun
 
 
docker-socket-proxy
docker-socket-proxy
 
 
dockge
dockge
 
 
dozzle
dozzle
 
 
dumbdo
dumbdo
 
 
fileshare
fileshare
 
 
flatnotes
flatnotes
 
 
gate
gate
 
 
gossip
gossip
 
 
grafana
grafana
 
 
it-tools
it-tools
 
 
kustos
kustos
 
 
mazanoke
mazanoke
 
 
media
media
 
 
memos
memos
 
 
minio
minio
 
 
onedev
onedev
 
 
paperless-ngx
paperless-ngx
 
 
pdf
pdf
 
 
pocket-id
pocket-id
 
 
pterodactyl
pterodactyl
 
 
sailboat
sailboat
 
 
template
template
 
 
traefik
traefik
 
 
umami
umami
 
 
unused
unused
 
 
uptime-kuma
uptime-kuma
 
 
vps
vps
 
 
wallos
wallos
 
 
wireguard-client
wireguard-client
 
 
zipline
zipline
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.sops.yaml
.sops.yaml
 
 
NOTES_FOR_MYSELF.md
NOTES_FOR_MYSELF.md
 
 
README.md
README.md
 
 
Taskfile.yml
Taskfile.yml
 
 
stack-order.txt
stack-order.txt
 
 
zombie-files.py
zombie-files.py
 
 

Repository files navigation

Homelab

This repo records all my docker files and sample configs for my home lab setup.

I plan to use ansible in the future and learn K8s, until then, we roll docker compose

Setup

All outside traffic is proxied via my vps. VPS connects to my home lab via a wireguard tunnel. This allows me to not open any ports at home.

flowchart LR
    A[Outside World] -->|VPS| B(Haproxy)
    B --> C(Wireguard)
    C -->|Home| D(Wireguard)
    D --> E(Traefik)
    E --> F[Thing 1]
    E --> G[Thing 2]
    E --> H[Thing 3]
Loading

Encryption and Obfuscation

You may have noticed all my config files and .envs are in this repo. I utilize sops with age to encrypt them.

Domain I use to host my stuff on is also obfuscated in compose files as well.

.gitattributes has the rules on how encryption, decryption and domain obfuscation works

.gitattributes

Append this at the end of .git/config with DOMAINHERE being your domain to replace, for stuff. You can run this from root directory

tee -a .git/config << EOF
[filter "obfuscate-domain"]
    smudge = sed s/domain.com/YOUR_DOMAIN/g %f
    clean = sed s/YOUR_DOMAIN/domain.com/g %f
    required

[filter "encrypt-decrypt"]
    smudge = sops decrypt %f
    clean = sops encrypt %f
    required

EOF

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages