alexz
838b33d6c5
Some checks failed
Test / test (push) Has been cancelled
Includes: - Dockerfile for native Cisco Secure Client in Docker - Build scripts (init-vpn.sh, startup-vnc.sh, vpn-connect.sh) - VNC configuration (xstartup, vnc.service) - build.sh for manual image builds - README documenting the architecture Note: cisco-secure-client-full.tar.gz is gitignored (large binary) Copy it from ~/projects/cisco-vpn/build/ before building. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
1.5 KiB
1.5 KiB
Rego Tunnel - Build Files
This directory contains the Dockerfile and scripts to build the Cisco VPN Docker image.
Files
Dockerfile- Main Docker image definitioncisco-secure-client-full.tar.gz- Pre-extracted Cisco Secure Client installationbuild.sh- Build script to create the Docker imagescripts/- Container scripts:init-vpn.sh- Container init (unmounts DNS files for VPN, starts systemd)startup-vnc.sh- VNC/noVNC startup scriptvpn-connect.sh- VPN automation script (inside container)xstartup- VNC session startupvnc.service- Systemd service for VNC
Building
cd /etc/runtipi/repos/runtipi/apps/rego-tunnel/build
./build.sh
To push to registry:
docker push git.alexzaw.dev/alexz/cisco-vpn:latest
Architecture
- init-vpn.sh: Unmounts Docker's bind-mounted
/etc/resolv.confand/etc/hosts(required for VPN to modify DNS), then starts systemd - systemd: Manages vpnagentd (Cisco VPN agent) and vnc (VNC server) services
- xstartup: Runs when VNC session starts - by default launches vpnui, but can be overridden via volume mount
- vpn-connect.sh: Optional automation script for auto-login with TOTP
Runtime Mounts
When running as rego-tunnel app, these are mounted:
/shared- Contains thecisco-vpnscript with full automation/root/.vnc/xstartup- Custom xstartup that launches terminal with cisco-vpn script/opt/scripts/init-vpn.sh- Custom init script with network setup