New UFW_DISABLE_IPTABLES_REJECT option that hacks ufw to allow the prevention of the use of the REJECT iptables target, as this is not available on some NAS platforms (such as the Synology).
		
			
				
	
	
		
			132 lines
		
	
	
		
			5.4 KiB
		
	
	
	
		
			Docker
		
	
	
	
	
	
			
		
		
	
	
			132 lines
		
	
	
		
			5.4 KiB
		
	
	
	
		
			Docker
		
	
	
	
	
	
| FROM ubuntu:16.04
 | |
| MAINTAINER Kristian Haugene
 | |
| 
 | |
| VOLUME /data
 | |
| VOLUME /config
 | |
| 
 | |
| # Update packages and install software
 | |
| RUN apt-get update \
 | |
|     && apt-get -y upgrade \
 | |
|     && apt-get -y install software-properties-common wget git \
 | |
|     && add-apt-repository ppa:transmissionbt/ppa \
 | |
|     && wget -O - https://swupdate.openvpn.net/repos/repo-public.gpg | apt-key add - \
 | |
|     && echo "deb http://build.openvpn.net/debian/openvpn/stable xenial main" > /etc/apt/sources.list.d/openvpn-aptrepo.list \
 | |
|     && apt-get update \
 | |
|     && apt-get install -y sudo transmission-cli transmission-common transmission-daemon curl rar unrar zip unzip ufw iputils-ping openvpn \
 | |
|     python2.7 python2.7-pysqlite2 && ln -sf /usr/bin/python2.7 /usr/bin/python2 \
 | |
|     && wget https://github.com/Secretmapper/combustion/archive/release.zip \
 | |
|     && unzip release.zip -d /opt/transmission-ui/ \
 | |
|     && rm release.zip \
 | |
|     && wget https://github.com/ronggang/twc-release/raw/master/src.tar.gz \
 | |
|     && mkdir /opt/transmission-ui/transmission-web-control \
 | |
|     && tar -xvf src.tar.gz -C /opt/transmission-ui/transmission-web-control/ \
 | |
|     && rm src.tar.gz \
 | |
|     && git clone git://github.com/endor/kettu.git /opt/transmission-ui/kettu \
 | |
|     && apt-get install -y tinyproxy telnet \
 | |
|     && wget https://github.com/Yelp/dumb-init/releases/download/v1.2.0/dumb-init_1.2.0_amd64.deb \
 | |
|     && dpkg -i dumb-init_1.2.0_amd64.deb \
 | |
|     && rm -rf dumb-init_1.2.0_amd64.deb \
 | |
|     && curl -L https://github.com/jwilder/dockerize/releases/download/v0.5.0/dockerize-linux-amd64-v0.5.0.tar.gz | tar -C /usr/local/bin -xzv \
 | |
|     && apt-get clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/* \
 | |
|     && groupmod -g 1000 users \
 | |
|     && useradd -u 911 -U -d /config -s /bin/false abc \
 | |
|     && usermod -G users abc
 | |
| 
 | |
| ADD openvpn/ /etc/openvpn/
 | |
| ADD transmission/ /etc/transmission/
 | |
| ADD tinyproxy /opt/tinyproxy/
 | |
| 
 | |
| ENV OPENVPN_USERNAME=**None** \
 | |
|     OPENVPN_PASSWORD=**None** \
 | |
|     OPENVPN_PROVIDER=**None** \
 | |
|     TRANSMISSION_ALT_SPEED_DOWN=50 \
 | |
|     TRANSMISSION_ALT_SPEED_ENABLED=false \
 | |
|     TRANSMISSION_ALT_SPEED_TIME_BEGIN=540 \
 | |
|     TRANSMISSION_ALT_SPEED_TIME_DAY=127 \
 | |
|     TRANSMISSION_ALT_SPEED_TIME_ENABLED=false \
 | |
|     TRANSMISSION_ALT_SPEED_TIME_END=1020 \
 | |
|     TRANSMISSION_ALT_SPEED_UP=50 \
 | |
|     TRANSMISSION_BIND_ADDRESS_IPV4=0.0.0.0 \
 | |
|     TRANSMISSION_BIND_ADDRESS_IPV6=:: \
 | |
|     TRANSMISSION_BLOCKLIST_ENABLED=false \
 | |
|     TRANSMISSION_BLOCKLIST_URL=http://www.example.com/blocklist \
 | |
|     TRANSMISSION_CACHE_SIZE_MB=4 \
 | |
|     TRANSMISSION_DHT_ENABLED=true \
 | |
|     TRANSMISSION_DOWNLOAD_DIR=/data/completed \
 | |
|     TRANSMISSION_DOWNLOAD_LIMIT=100 \
 | |
|     TRANSMISSION_DOWNLOAD_LIMIT_ENABLED=0 \
 | |
|     TRANSMISSION_DOWNLOAD_QUEUE_ENABLED=true \
 | |
|     TRANSMISSION_DOWNLOAD_QUEUE_SIZE=5 \
 | |
|     TRANSMISSION_ENCRYPTION=1 \
 | |
|     TRANSMISSION_IDLE_SEEDING_LIMIT=30 \
 | |
|     TRANSMISSION_IDLE_SEEDING_LIMIT_ENABLED=false \
 | |
|     TRANSMISSION_INCOMPLETE_DIR=/data/incomplete \
 | |
|     TRANSMISSION_INCOMPLETE_DIR_ENABLED=true \
 | |
|     TRANSMISSION_LPD_ENABLED=false \
 | |
|     TRANSMISSION_MAX_PEERS_GLOBAL=200 \
 | |
|     TRANSMISSION_MESSAGE_LEVEL=2 \
 | |
|     TRANSMISSION_PEER_CONGESTION_ALGORITHM= \
 | |
|     TRANSMISSION_PEER_ID_TTL_HOURS=6 \
 | |
|     TRANSMISSION_PEER_LIMIT_GLOBAL=200 \
 | |
|     TRANSMISSION_PEER_LIMIT_PER_TORRENT=50 \
 | |
|     TRANSMISSION_PEER_PORT=51413 \
 | |
|     TRANSMISSION_PEER_PORT_RANDOM_HIGH=65535 \
 | |
|     TRANSMISSION_PEER_PORT_RANDOM_LOW=49152 \
 | |
|     TRANSMISSION_PEER_PORT_RANDOM_ON_START=false \
 | |
|     TRANSMISSION_PEER_SOCKET_TOS=default \
 | |
|     TRANSMISSION_PEX_ENABLED=true \
 | |
|     TRANSMISSION_PORT_FORWARDING_ENABLED=false \
 | |
|     TRANSMISSION_PREALLOCATION=1 \
 | |
|     TRANSMISSION_PREFETCH_ENABLED=1 \
 | |
|     TRANSMISSION_QUEUE_STALLED_ENABLED=true \
 | |
|     TRANSMISSION_QUEUE_STALLED_MINUTES=30 \
 | |
|     TRANSMISSION_RATIO_LIMIT=2 \
 | |
|     TRANSMISSION_RATIO_LIMIT_ENABLED=false \
 | |
|     TRANSMISSION_RENAME_PARTIAL_FILES=true \
 | |
|     TRANSMISSION_RPC_AUTHENTICATION_REQUIRED=false \
 | |
|     TRANSMISSION_RPC_BIND_ADDRESS=0.0.0.0 \
 | |
|     TRANSMISSION_RPC_ENABLED=true \
 | |
|     TRANSMISSION_RPC_HOST_WHITELIST= \
 | |
|     TRANSMISSION_RPC_HOST_WHITELIST_ENABLED=false \
 | |
|     TRANSMISSION_RPC_PASSWORD=password \
 | |
|     TRANSMISSION_RPC_PORT=9091 \
 | |
|     TRANSMISSION_RPC_URL=/transmission/ \
 | |
|     TRANSMISSION_RPC_USERNAME=username \
 | |
|     TRANSMISSION_RPC_WHITELIST=127.0.0.1 \
 | |
|     TRANSMISSION_RPC_WHITELIST_ENABLED=false \
 | |
|     TRANSMISSION_SCRAPE_PAUSED_TORRENTS_ENABLED=true \
 | |
|     TRANSMISSION_SCRIPT_TORRENT_DONE_ENABLED=false \
 | |
|     TRANSMISSION_SCRIPT_TORRENT_DONE_FILENAME= \
 | |
|     TRANSMISSION_SEED_QUEUE_ENABLED=false \
 | |
|     TRANSMISSION_SEED_QUEUE_SIZE=10 \
 | |
|     TRANSMISSION_SPEED_LIMIT_DOWN=100 \
 | |
|     TRANSMISSION_SPEED_LIMIT_DOWN_ENABLED=false \
 | |
|     TRANSMISSION_SPEED_LIMIT_UP=100 \
 | |
|     TRANSMISSION_SPEED_LIMIT_UP_ENABLED=false \
 | |
|     TRANSMISSION_START_ADDED_TORRENTS=true \
 | |
|     TRANSMISSION_TRASH_ORIGINAL_TORRENT_FILES=false \
 | |
|     TRANSMISSION_UMASK=2 \
 | |
|     TRANSMISSION_UPLOAD_LIMIT=100 \
 | |
|     TRANSMISSION_UPLOAD_LIMIT_ENABLED=0 \
 | |
|     TRANSMISSION_UPLOAD_SLOTS_PER_TORRENT=14 \
 | |
|     TRANSMISSION_UTP_ENABLED=true \
 | |
|     TRANSMISSION_WATCH_DIR=/data/watch \
 | |
|     TRANSMISSION_WATCH_DIR_ENABLED=true \
 | |
|     TRANSMISSION_HOME=/data/transmission-home \
 | |
|     ENABLE_UFW=false \
 | |
|     UFW_ALLOW_GW_NET=false \
 | |
|     UFW_EXTRA_PORTS= \
 | |
|     UFW_DISABLE_IPTABLES_REJECT=false \
 | |
|     TRANSMISSION_WEB_UI= \
 | |
|     PUID= \
 | |
|     PGID= \
 | |
|     TRANSMISSION_WEB_HOME= \
 | |
|     DROP_DEFAULT_ROUTE= \
 | |
|     WEBPROXY_ENABLED=false \
 | |
|     WEBPROXY_PORT=8888
 | |
| 
 | |
| # Expose port and run
 | |
| EXPOSE 9091
 | |
| EXPOSE 8888
 | |
| CMD ["dumb-init", "/etc/openvpn/start.sh"]
 |