-
Notifications
You must be signed in to change notification settings - Fork 0
/
Dockerfile
57 lines (47 loc) · 2.11 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
# Cloudflare WARP
FROM debian:stable-slim AS cloudflare-warp
# download the cloudflare-warp deb package
RUN \
apt-get update && \
apt-get upgrade -y && \
apt-get install -y curl ca-certificates gnupg lsb-release && \
\
curl https://pkg.cloudflareclient.com/pubkey.gpg | gpg --yes --dearmor --output /usr/share/keyrings/cloudflare-warp-archive-keyring.gpg && \
echo "deb [arch=amd64 signed-by=/usr/share/keyrings/cloudflare-warp-archive-keyring.gpg] https://pkg.cloudflareclient.com/ $(lsb_release -cs) main" | tee /etc/apt/sources.list.d/cloudflare-client.list && \
\
mkdir -p /tmp/cloudflare-warp && cd /tmp/cloudflare-warp && \
\
apt-get update && \
apt show cloudflare-warp && \
apt-get download --print-uris cloudflare-warp && \
apt-get download cloudflare-warp || true && \
mv cloudflare-warp_*.deb cloudflare-warp.deb
# https://hub.docker.com/_/debian/tags
FROM debian:stable-slim
# Hello
LABEL maintainer="Nicholas de Jong <[email protected]>"
LABEL source="https://github.com/threatpatrols/docker-cfwarp-socat"
# copy-install cloudflare-warp package
COPY --from=cloudflare-warp /tmp/cloudflare-warp/cloudflare-warp.deb /tmp/cloudflare-warp/cloudflare-warp.deb
# install prerequisites and cloudflare-warp
RUN \
apt-get update && \
apt-get upgrade -y && \
apt-get install -y curl ca-certificates systemd-resolved sudo procps iputils-ping inetutils-traceroute && \
apt install -y /tmp/cloudflare-warp/cloudflare-warp.deb && \
apt-get install -y socat && \
\
printf " >> %s\n" "$(warp-cli --accept-tos --version)" && \
printf " >> %s\n" "$(socat -V | grep 'socat version')" && \
\
apt-get clean && \
apt-get autoremove -y && \
rm -rf /var/lib/apt/lists/* && \
rm -rf /tmp/*
# NB: perform these COPY/RUN layers after the RUN layer above so edits/changes have short dev-build times
COPY scripts /scripts
COPY entrypoint.sh healthchecks.sh ./
RUN chmod 755 /entrypoint.sh /healthchecks.sh /scripts/*.sh
HEALTHCHECK --interval=30s --timeout=5s --start-period=30s --retries=5 \
CMD "/healthchecks.sh"
ENTRYPOINT ["/entrypoint.sh"]