PortainerUI(Docker管理器)
docker run -d --restart=always --name portainerUI -p 8007:9000 -v /var/run/docker.sock:/var/run/docker.sock portainer/portainer
Webssh(网页版ssh)
docker run --detach --restart unless-stopped --publish 8182:8182 --name sshwifty niruix/sshwifty:latest
Homer(网页版资源管理)
docker run -d -p 8080:8080 -v ~/homer-config:/www/assets --restart=always b4bz/homer:latest
Reference(开发人员分享快速参考备忘清单)
docker pull wcjiang/reference
docker run --name reference --rm -d -p 9667:3000 wcjiang/reference:latest
Jumpserver堡垒机
1.生成随机加密秘钥
if [ "$SECRET_KEY" = "" ]; then SECRET_KEY=cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 50; echo "SECRET_KEY=$SECRET_KEY" >> ~/.bashrc; echo $SECRET_KEY; else echo $SECRET_KEY; fi
if [ "$BOOTSTRAP_TOKEN" = "" ]; then BOOTSTRAP_TOKEN=cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 16; echo "BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN" >> ~/.bashrc; echo $BOOTSTRAP_TOKEN; else echo $BOOTSTRAP_TOKEN; fi
2.运行Mysql容器
docker run --name mysql-server -t \
--hostname mysql-server \
--restart=always \
-v /etc/localtime:/etc/localtime \
-v /volume1/docker/mysql/2/:/var/lib/mysql \
-e MYSQL_DATABASE="jumpserver" \
-e MYSQL_USER="jumpserver" \
-e MYSQL_PASSWORD="jumpserver" \
-e MYSQL_ROOT_PASSWORD="111111" \
-p 3306:3306 \
-d mysql:5.7 \
--character-set-server=utf8 --collation-server=utf8_bin
查看容器运行日志docker logs -f mysql-server
3.运行Redis容器
docker run --name redis-server -t \
--hostname redis-server \
--restart=always \
-v /etc/localtime:/etc/localtime \
-d redis
查看容器运行日志docker logs -f redis-server
4.运行Jumpserver容器
docker run --name jms_all -t \
--hostname jms_all \
--restart=always \
-v /etc/localtime:/etc/localtime \
-p 80:80 \
-p 2222:2222 \
-e SECRET_KEY=$SECRET_KEY \
-e BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN \
-e DB_HOST="mysql-server" \
-e DB_PORT=3306 \
-e DB_NAME="jumpserver" \
-e DB_USER="jumpserver" \
-e DB_PASSWORD="jumpserver" \
--link mysql-server:mysql \
-e REDIS_HOST="redis-server" \
-e REDIS_PORT="6379" \
--link redis-server:redis \
-d jumpserver/jms_all:latest
查看容器运行日志docker logs -f jms_all,请耐心等待初始化完成,时间可能比较长点,当容器日志显示如下即可访问Jumpserver网页了
Frp内网穿透工具
客户端
docker run --restart=always --network host -d -v /docker/frp/frpc.ini:/etc/frp/frpc.ini --name frpc snowdreamtech/frpc
服务端
docker run --restart=always --network host -d -v /etc/frp/frps.toml:/etc/frp/frps.toml --name frps snowdreamtech/frps
Alist
docker run -d --restart=always -v /etc/alist:/opt/alist/data -p 5244:5244 -e PUID=0 -e PGID=0 -e UMASK=022 --name="alist" xhofe/alist:latest
#首次登陆建议设置成指定密码
docker exec -it alist ./alist admin set NEW_PASSWORD
XUI
mkdir x-ui && cd x-ui
docker run -itd --network=host \
-v $PWD/db/:/etc/x-ui/ \
-v $PWD/cert/:/root/cert/ \
--name x-ui --restart=always \
enwaiax/x-ui:alpha-zh
vaultwarden(密码管理器)
docker run -d --restart=always --name vaultwarden -v /vw-data/:/data/ -p 5555:80 vaultwarden/server:latest
nginx-proxy-manager
docker run -d \
--name=npm \
-p 80:80 \
-p 81:81 \
-p 443:443 \
-v /home/npm/data:/data \
-v /home/npm/letsencrypt:/etc/letsencrypt \
--restart=always \
jc21/nginx-proxy-manager:latest
ChatGPT-Next-Web
docker run -d -p 3000:3000 \
--name chatgpt --restart=always \
-e OPENAI_API_KEY=API-KEY \
-e CODE=密码 \
yidadaa/chatgpt-next-web
ddns-go
docker run -d --name ddns-go --restart=always --net=host -v /opt/ddns-go:/root jeessy/ddns-go
weejewel/wg-easy openwrt
docker run -d \
--name=wg-easy \
-e WG_HOST=oppsvpn.198388.xyz \
-e PASSWORD_HASH=$2a$10$yVj5dNXJCFLTt6v8pYqm4OIHPt1xMBWjE2GlMbJbQ5YmyUBQzDpNu \
-e WG_DEFAULT_ADDRESS=172.16.4.x \
-e WG_DEFAULT_DNS=192.168.2.1 \
-e WG_ALLOWED_IPS=0.0.0.0/0,::/0 \
-e WG_PERSISTENT_KEEPALIVE=25 \
-v /usr/local/wg-easy/data:/etc/wireguard \
-p 51824:51820/udp \
-p 51825:51821/tcp \
--cap-add=NET_ADMIN \
--cap-add=SYS_MODULE \
--sysctl="net.ipv4.conf.all.src_valid_mark=1" \
--sysctl="net.ipv4.ip_forward=1" \
--restart=always \
ghcr.io/wg-easy/wg-easy:latest
openwrt接口设置
设置端口转发
主路由设置
添加客户端
