-
Notifications
You must be signed in to change notification settings - Fork 11
/
Copy pathvpn-proxy.yml
41 lines (40 loc) · 1.58 KB
/
vpn-proxy.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
# Please note this Docker image does not include the required OpenVPN configuration file and certificates. These will typically be downloaded from your VPN providers website (look for OpenVPN configuration files), and generally are zipped.
# PIA users - The URL to download the OpenVPN configuration files and certs is:-
# https://www.privateinternetaccess.com/openvpn/openvpn.zip
# Due to Google and OpenDNS supporting EDNS Client Subnet it is recommended NOT to use either of these NS providers. The list of default NS providers in the example is as follows:-
# 209.222.x.x = PIA 84.200.x.x = DNS Watch 37.235.x.x = FreeDNS 1.x.x.x = Cloudflare
# Access Privoxy
# http://<host>:8118
---
version: "3.7"
services:
vpn-proxy:
image: binhex/arch-privoxyvpn
container_name: vpn-proxy
cap_add:
- NET_ADMIN
ports:
- "8118:8118"
networks:
- vpn-proxy
volumes:
- ${USERDIR}/vpn-proxy:/config
- /etc/localtime:/etc/localtime:ro
environment:
- PUID=1000 #Might need to be 0, run id inside container
- PGID=1000 #Might need to be 0
- VPN_ENABLED=yes
- VPN_USER=${VPNUSER}
- VPN_PASS=${VPNPASS}
- VPN_PROV=pia #airvpn|custom
# - VPN_OPTIONS=#additional openvpn cli options
- LAN_NETWORK=192.168.1.0/24
- STRICT_PORT_FORWARD=yes
- ENABLE_PRIVOXY=yes
#Use specific NS for each VPN service to prevent DNS leakage
- NAME_SERVERS=209.222.18.222,84.200.69.80,37.235.1.174,1.1.1.1,209.222.18.218,37.235.1.177,84.200.70.40,1.0.0.1
- DEBUG=false
- UMASK=000
networks:
vpn-proxy:
name: vpn-proxy