GeneralBots/gbserver
2
0
Fork 0
Code Issues 2 Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: GeneralBots:46a061a61f0be8f0748559db4c45f2d3f976c634
Branches Tags
GeneralBots:main
GeneralBots:modular
GeneralBots:master
..
compare: GeneralBots:869f23d066fd0348b1bde733e7c0f85910cfcef0
Branches Tags
GeneralBots:main
GeneralBots:modular
GeneralBots:master

No commits in common. "46a061a61f0be8f0748559db4c45f2d3f976c634" and "869f23d066fd0348b1bde733e7c0f85910cfcef0" have entirely different histories.
46a061a61f ... 869f23d066

23 changed files with 0 additions and 82 deletions
Show stats Expand all files Collapse all files

0
src/scripts/utils/cleaner.sh → src/scripts/containers/cleaner.sh
View file

82
src/scripts/containers/dns.sh
View file

@ -1,82 +0,0 @@
#!/bin/bash
HOST_BASE="/opt/gbo/tenants/$PARAM_TENANT/dns"
HOST_CONF="$HOST_BASE/conf"
HOST_DATA="$HOST_BASE/data"
HOST_LOGS="$HOST_BASE/logs"
mkdir -p "$HOST_BASE" "$HOST_CONF" "$HOST_DATA" "$HOST_LOGS"
chmod -R 750 "$HOST_BASE"
# Clear existing rules
sudo iptables -F
# Allow DNS traffic
sudo iptables -A INPUT -p udp --dport 53 -j ACCEPT
sudo iptables -A INPUT -p tcp --dport 53 -j ACCEPT
sudo iptables -A FORWARD -p udp --dport 53 -j ACCEPT
sudo iptables -A FORWARD -p tcp --dport 53 -j ACCEPT
# Enable NAT
sudo iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
# Save rules (if using iptables-persistent)
sudo netfilter-persistent save
lxc launch images:debian/12 "${PARAM_TENANT}-dns" -c security.privileged=true
until lxc exec "${PARAM_TENANT}-dns" -- true; do sleep 3; done
lxc config device remove pragmatismo-dns dns-udp
lxc config device remove pragmatismo-dns dns-tcp
# Forward HOST's public IP:53 → CONTAINER's 0.0.0.0:53
lxc config device add pragmatismo-dns dns-udp proxy listen=udp:$GB_PUBLIC_IP:53 connect=udp:0.0.0.0:53
lxc config device add pragmatismo-dns dns-tcp proxy listen=tcp:$GB_PUBLIC_IP:53 connect=tcp:0.0.0.0:53
lxc exec "${PARAM_TENANT}-dns" -- bash -c "
mkdir /opt/gbo
mkdir /opt/gbo/{bin,conf,data,logs}
echo 'nameserver 8.8.8.8' > /etc/resolv.conf
apt-get upgrade -y && apt-get install -y wget
wget -qO /opt/gbo/bin/coredns https://github.com/coredns/coredns/releases/download/v1.11.1/coredns_1.11.1_linux_amd64.tgz
tar -xzf /opt/gbo/bin/coredns -C /opt/gbo/bin/
useradd --system --no-create-home --shell /bin/false gbuser
setcap cap_net_bind_service=+ep /opt/gbo/bin/coredns
cat > /etc/systemd/system/dns.service <<EOF2
[Unit]
Description=DNS
After=network.target
[Service]
User=gbuser
ExecStart=/opt/gbo/bin/coredns -conf /opt/gbo/conf/Corefile
Restart=always
[Install]
WantedBy=multi-user.target
EOF2
systemctl stop systemd-resolved
systemctl disable systemd-resolved
rm /etc/resolv.conf
systemctl daemon-reload
systemctl enable dns
"
GBUSER_UID=$(lxc exec "${PARAM_TENANT}-dns" -- id -u gbuser)
HOST_UID=$((100000 + GBUSER_UID))
chown -R "$HOST_UID:$HOST_UID" "$HOST_BASE"
lxc exec "${PARAM_TENANT}-dns" -- bash -c "
chown -R gbuser:gbuser /opt/gbo
"
lxc config device add "${PARAM_TENANT}-dns" dnsdata disk source="$HOST_DATA" path=/opt/gbo/data
lxc config device add "${PARAM_TENANT}-dns" dnsconf disk source="$HOST_CONF" path=/opt/gbo/conf
lxc config device add "${PARAM_TENANT}-dns" dnslogs disk source="$HOST_LOGS" path=/opt/gbo/logs
lxc exec "${PARAM_TENANT}-dns" -- systemctl start dns

0
src/scripts/utils/install-libreoffice-online.sh → src/scripts/containers/install-libreoffice-online.sh
View file

0
src/scripts/utils/set-limits.sh → src/scripts/containers/set-limits.sh
View file

0
src/scripts/utils/set-size-5GB.sh → src/scripts/containers/set-size-5GB.sh
View file

0
src/scripts/utils/setup-host.sh → src/scripts/containers/setup-host.sh
View file

0
src/scripts/utils/startup.sh → src/scripts/containers/startup.sh
View file

0
src/scripts/containers/alm-ci.sh → src/templates/containers/alm-ci/alm-ci.sh
View file

0
src/scripts/containers/alm.sh → src/templates/containers/alm/alm.sh
View file

0
src/scripts/containers/bot.sh → src/templates/containers/bot/bot.sh
View file

0
src/scripts/containers/desktop.sh → src/templates/containers/desktop/desktop.sh
View file

0
src/scripts/containers/directory.sh → src/templates/containers/directory/directory.sh
View file

0
src/scripts/containers/doc-editor.sh → src/templates/containers/doc-editor/doc-editor.sh
View file

0
src/scripts/containers/drive.sh → src/templates/containers/drive/drive.sh
View file

0
src/scripts/containers/email.sh → src/templates/containers/email/email.sh
View file

0
src/scripts/containers/meeting.sh → src/templates/containers/meeting/meeting.sh
View file

0
src/scripts/prompt.txt → src/templates/containers/prompt.txt
View file

0
src/scripts/containers/proxy.sh → src/templates/containers/proxy/proxy.sh
View file

0
src/scripts/containers/social.sh → src/templates/containers/social/.sh
View file

0
src/scripts/containers/system.sh → src/templates/containers/system/system.sh
View file

0
src/scripts/containers/table-editor.sh → src/templates/containers/table-editor/table-editor.sh
View file

0
src/scripts/containers/tables.sh → src/templates/containers/tables/tables.sh
View file

0
src/scripts/containers/webmail.sh → src/templates/containers/webmail/webmail.sh
View file