Skip to content

Files

Latest commit

1itt1eB0y1itt1eB0y
Docker添加和n8n添加
Jan 4, 2023
a4bbe94 · Jan 4, 2023

History

History

derper

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
Dockerfile
Dockerfile
Jul 9, 2022
README.md
README.md
Jan 4, 2023
derpprobe
derpprobe
Jul 9, 2022
docker-compose.yml
docker-compose.yml
Sep 9, 2022

README.md

English Version

自定义 Tailscale DERP 服务器

如果你想使用 -verify-clients 选项,你必须挂载 /var/run/tailscale/tailscaled.sock 目录以向derp提供tailscaled.sock

根据你的需要编辑 docker-compose.yml 文件,然后运行

docker-compose up -d

注意:

手动指定证书,会自动搜索 <certdir>/<hostname>.crt<certdir>/<hostname>.key 文件 复制并重命名对应的文件,或者将 Let's Encryptpem 文件使用 ln -P 命令链接为 crtkey 文件。

测试你的 DERP 服务器

https://tailscale.com/kb/1118/custom-derp-servers/#monitoring-custom-derps

wget https://raw.githubusercontent.com/1itt1eB0y/MyCollection/master/docker/derper/derpprobe
chmod 755 derpprobe
./derpprobe -derp-map http://127.0.0.1/testDERP.json -listen :1000

testDERP.json

你可以将这个 json 复制并粘贴到官方的 ACL 的 derpMap 部分。

{
  "Regions": {
    "999": {
      "RegionID": 999,
      "RegionCode": "custom",
      "RegionName": "My Custom Derp",
      "Nodes": [{
        "Name": "1",
        "RegionID": 999,
        "HostName":"derp.example.com",
        "IPv4":"1.1.1.1",
        "DERPPort": 443,
        "STUNPort": 3478
      }]
    }
  }
}

ACL示例文件 https://tailscale.com/kb/1118/custom-derp-servers/#step-2-adding-derp-servers-to-your-tailnet

{
  // ... other parts of ACL/Policy JSON
  "derpMap": {
    "Regions": {
      "999": {
        "RegionID": 999,
        "RegionCode": "custom",
        "RegionName": "My Custom Derp",
        "Nodes": [{
          "Name": "1",
          "RegionID": 999,
          "HostName":"derp.example.com",
          "IPv4":"1.1.1.1",
          "DERPPort": 443,
          "STUNPort": 3478
        }]
      }
    }
  }
}

Custom Tailscale DERP Server

If you want to run with -verify-clients option, you must volume /var/run/tailscale/tailscaled.sock.

Edit docker-compose.yml as you need, then run

docker-compose up -d

Notice:

Manual cert will search <certdir>/<hostname>.crt and <certdir>/<hostname>.key automaticlly, copy a renamed copy, or ln -P your Let's Encrypt pem files to crt and key

Test your DERP server

https://tailscale.com/kb/1118/custom-derp-servers/#monitoring-custom-derps

wget https://raw.githubusercontent.com/1itt1eB0y/MyCollection/master/docker/derper/derpprobe
chmod 755 derpprobe
./derpprobe -derp-map http://127.0.0.1/testDERP.json -listen :1000

testDERP.json

You can copy and paste this json to Official ACL's derpMap section.

{
  "Regions": {
    "999": {
      "RegionID": 999,
      "RegionCode": "custom",
      "RegionName": "My Custom Derp",
      "Nodes": [{
        "Name": "1",
        "RegionID": 999,
        "HostName":"derp.example.com",
        "IPv4":"1.1.1.1",
        "DERPPort": 443,
        "STUNPort": 3478
      }]
    }
  }
}

ACL EXAMPLE https://tailscale.com/kb/1118/custom-derp-servers/#step-2-adding-derp-servers-to-your-tailnet

{
  // ... other parts of ACL/Policy JSON
  "derpMap": {
    "Regions": {
      "999": {
        "RegionID": 999,
        "RegionCode": "custom",
        "RegionName": "My Custom Derp",
        "Nodes": [{
          "Name": "1",
          "RegionID": 999,
          "HostName":"derp.example.com",
          "IPv4":"1.1.1.1",
          "DERPPort": 443,
          "STUNPort": 3478
        }]
      }
    }
  }
}