alexz/runtipi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

rego-tunnel: auto-setup SSH, socat, and port forwarding
Some checks failed
Test / test (push) Has been cancelled
Details
Renovate / renovate (push) Has been cancelled
Details

Browse Source 
- Add vpn_scripts volume mount
- Install socat, openssh-client, netcat on startup
- Copy SSH key to /root/.ssh/ automatically
- Add socat forwarder for SSH (port 22)
- Expose ports 22 and 1080 in user-config

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
Alex Zaw
2025-12-18 17:50:13 +00:00
parent e7f8028e83
commit f878882718
2 changed files with 16 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
apps/rego-tunnel/docker-compose.yml
View File

@@ -20,7 +20,7 @@ services:
volumes: volumes:
- ${APP_DATA_DIR}/data/storage:/storage - ${APP_DATA_DIR}/data/storage:/storage
- ${APP_DATA_DIR}/data/shared:/shared - ${APP_DATA_DIR}/data/shared:/shared
# - ${APP_DATA_DIR}/data/start.sh:/run/start.sh - /etc/runtipi/repos/runtipi/apps/rego-tunnel/vpn_scripts:/vpn_scripts:ro
networks: networks:
- tipi_main_network - tipi_main_network
sysctls: sysctls:

15
apps/rego-tunnel/vpn_scripts/start.sh
View File

@@ -4,6 +4,16 @@ set -Eeuo pipefail
# Startup hook - runs after container starts # Startup hook - runs after container starts
# Dynamically detects Windows VM IP and sets up networking # Dynamically detects Windows VM IP and sets up networking
# Install required packages (not persistent across restarts)
echo "[rego-tunnel] Installing required packages..."
apt-get update -qq && apt-get install -y -qq socat openssh-client netcat-openbsd >/dev/null 2>&1 || true
# Setup SSH key for accessing Windows VM
echo "[rego-tunnel] Setting up SSH key..."
mkdir -p /root/.ssh
cp /vpn_scripts/id_ed25519-lenovo /root/.ssh/ 2>/dev/null || true
chmod 600 /root/.ssh/id_ed25519-lenovo 2>/dev/null || true
get_windows_ip() { get_windows_ip() {
# Method 1: DHCP leases (hostname is "Windows") # Method 1: DHCP leases (hostname is "Windows")
local ip=$(awk '/Windows/ {print $3}' /var/lib/misc/dnsmasq.leases 2>/dev/null | head -1) local ip=$(awk '/Windows/ {print $3}' /var/lib/misc/dnsmasq.leases 2>/dev/null | head -1)
@@ -61,6 +71,11 @@ get_container_ip() {
iptables -C FORWARD -d "$WINDOWS_IP" -j ACCEPT 2>/dev/null || \ iptables -C FORWARD -d "$WINDOWS_IP" -j ACCEPT 2>/dev/null || \
iptables -A FORWARD -d "$WINDOWS_IP" -j ACCEPT iptables -A FORWARD -d "$WINDOWS_IP" -j ACCEPT
# Start socat to forward SSH from Windows VM
pkill -f "socat.*:22" 2>/dev/null || true
socat TCP-LISTEN:22,fork,reuseaddr TCP:"$WINDOWS_IP":22 &
echo "[rego-tunnel] socat SSH forwarder started on port 22"
# Start socat to forward SOCKS5 proxy from Windows VM # Start socat to forward SOCKS5 proxy from Windows VM
pkill -f "socat.*1080" 2>/dev/null || true pkill -f "socat.*1080" 2>/dev/null || true
socat TCP-LISTEN:1080,fork,reuseaddr TCP:"$WINDOWS_IP":1080 & socat TCP-LISTEN:1080,fork,reuseaddr TCP:"$WINDOWS_IP":1080 &