## 호스트에서는 아래 차단룰이 먹힘 ## 하지만 도커 컨테이너에서는 안먹힘 [darksharavim]iptables -D INPUT -p tcp --dport 8888 -j DROP ## 도커 컨테이너에 차단룰을 적용할려면 아래처럼 ## [darksharavim]iptables -I DOCKER-USER -p tcp --dport 8888 -j DROP ## 멀티포트 설정 ## [darksharavim]iptables -I DOCKER-USER -p tcp -m multiport --dports 8888,9999 -s 1.1.1.1 -j ACCEPT [darksharavim]iptables -I DOCKER-USER -p tcp -m multiport --dports 8888,9999 -j DROP h..

proxmox접속LXC 이미지 다운로드 및 생성root@pve:~# pveam download local centos-9-stream-default_20221109_amd64.tar.xz root@pve:~# pct create 999 local:vztmpl/centos-9-stream-default_20221109_amd64.tar.xz --description ct999 --hostname ct999 --memory 512 --rootfs local-lvm:8 --cores 1 --net0 name=eth0,bridge=vmbr0,ip=dhcp --unprivileged 1 --password 12345 --features nesting=1 LXC접속 tailscale설치[root@ct999 ~]# ..

[darksharavim]cat docker-compose.yml version: '3.1' services: vaultwarden: container_name: ds-vaultwarden image: vaultwarden/server restart: always ports: - 8088:8088 volumes: - ./data:/data environment: - TZ=Asia/Seoul - ROCKET_PORT=8088 #- ADMIN_TOKEN=password #PW까먹었을때https://[domain]/admin 위와 같이 진행할 경우 컨테이너 포트가 지정(디폴트 80)되어 있어 8088포트로 되지 않음. 아래와 같이 ROCKET_PORT를 변경해야 정상동작. https://it-svr.com/v..

NPM에서는 로그확인 어려움version: '3.3' services: goaccess: image: 'xavierh/goaccess-for-nginxproxymanager:latest' container_name: goaccess restart: always ports: - '7880:7880' environment: - TZ=America/New_York - SKIP_ARCHIVED_LOGS=False #optional - DEBUG=False #optional - BASIC_AUTH=False #optional - BASIC_AUTH_USERNAME=user #optional - BASIC_AUTH_PASSWORD=pass #optional - EXCLUDE_IPS=127.0.0.1 #optiona..

## docker run ## [darksharavim]docker run --name="watchtower" -d --restart=always -v /var/run/docker.sock:/var/run/docker.sock -e TZ=Asia/Seoul containrrr/watchtower --interval 10 ## docker-compose ## version: "3" services: watchtower: image: containrrr/watchtower volumes: - /var/run/docker.sock:/var/run/docker.sock https://containrrr.dev/watchtower/ Watchtowercontainrrr.dev https://svrforum.com..