mchlwong/derp
1
1
Fork 0
mirror of https://github.com/mchlwong/derp.git synced 2024-09-20 06:55:56 +08:00
Code Issues Packages Projects Releases Wiki Activity

Remove workaround for manual certificates issue since 1.30.0 released.

Browse source
This commit is contained in:
Michael 2022-09-01 14:39:32 +08:00 committed by GitHub
parent f673b1cd55
commit 2ef299f7f5
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
Dockerfile
View file

@ -9,6 +9,6 @@ ENV DERP_VERIFY_CLIENTS false
COPY --from=builder /go/bin/derper .
HEALTHCHECK --interval=1m --timeout=30s --start-period=10s --retries=1 CMD wget --no-verbose --tries=1 --spider https://$DERP_DOMAIN:10443 || kill 1
HEALTHCHECK --interval=3m --timeout=30s --start-period=10s --retries=3 CMD wget --no-verbose --tries=1 --spider https://$DERP_DOMAIN:10443
CMD /app/derper -hostname $DERP_DOMAIN -certmode manual -certdir /cert -stun -verify-clients=$DERP_VERIFY_CLIENTS

2
README.md
View file

@ -5,7 +5,7 @@ Tailscale custom DERP server Dockerfile and configs.
docker build --no-cache --tag derp:version .
# Docker command
Adding "-verify-clients" makes the container unhealthy (tls handshake failure) more frequently (from in days to in minutes!), so it is not recommended right now. In case you want to use "-verify-clients", add "-e DERP_DERP_VERIFY_CLIENTS=true" and "-v /var/run/tailscale/tailscaled.sock:/var/run/tailscale/tailscaled.sock".
In case you want to use "-verify-clients", add "-e DERP_VERIFY_CLIENTS=true" and "-v /var/run/tailscale/tailscaled.sock:/var/run/tailscale/tailscaled.sock".
```shell
docker run -d \
--name derp \