====== Docker ======
Just some scrambled mess on how I sometimes have docker deployed in my environment. 


===== Deploy in Ubu 18.04 =====
https://www.digitalocean.com/community/tutorials/how-to-install-and-use-docker-on-ubuntu-18-04


===== Portainer =====
[[https://www.portainer.io/installation/|Portainer]] is love, Portainer is life.

<code>
docker volume create portainer_data
</code>
<code>
docker run -d -p 8000:8000 -p 9000:9000 -p 9443:9443 \
    --name=portainer --restart=always \
    -v /var/run/docker.sock:/var/run/docker.sock \
    -v portainer_data:/data \
    portainer/portainer-ce:latest
</code>

==== Upgrading ====
<code>
docker pull portainer/portainer-ce:latest
</code>

<code>
docker stop portainer; docker rm portainer
</code>

<code>
docker run -d -p 8000:8000 -p 9000:9000 -p 9443:9443 \
    --name=portainer --restart=always \
    -v /var/run/docker.sock:/var/run/docker.sock \
    -v portainer_data:/data \
    portainer/portainer-ce:latest
</code>
===== Dashboard =====
https://github.com/phntxx/dashboard

<code>
docker run -d --restart unless-stopped \
  -v /dockerMisc/dashboard:/app/data \
  -p 8081:8080 \
  --name dashboard \
  phntxx/dashboard
</code>

===== Smokeping =====
<code>
docker create \
  --name=smokeping \
  -e TZ=America/New_York \
  -p 8990:80 \
  -v /dockerMisc/smokePing/config:/config \
  -v /dockerMisc/smokePing/data:/data \
  --restart unless-stopped \
  linuxserver/smokeping
</code>

[[docker:smokeping_targetstargets|config/Targets]]
===== Whoogle =====
[[https://github.com/benbusby/whoogle-search|Whoogle Search]]

<code>
docker run -d --restart unless-stopped \
  -p 5000:5080 \
  --name Whoogle \
  benbusby/whoogle-search:latest
</code>



===== Caddy =====
<code>
docker run \
--publish 5000:5000 \
--restart=always --detach \
--name whoogle \
 benbusby/whoogle-search:latest
</code>

===== HasteBin =====
https://hub.docker.com/r/rlister/hastebin
<code>
docker create \
   --name=hastebin \
   --restart=always \
   -p 7777:7777 \
   -e STORAGE_TYPE=file \
   -v /dockerMisc/hastebin:/app/data \
   rlister/hastebin
</code>

===== OpenVPN AS =====
https://hub.docker.com/r/linuxserver/openvpn-as
<code>
docker create \
  --name=openvpn-as \
  --cap-add=NET_ADMIN \
  -e PUID=1000 \
  -e PGID=1000 \
  -e TZ=America/New_York \
  -e INTERFACE=enp3s0 \
  -p 943:943 \
  -p 9443:9443 \
  -p 1194:1194/udp \
  -v /dockerMisc/openvpn-as:/config \
  --restart unless-stopped \
  linuxserver/openvpn-as
</code>

===== Guacamole =====
<note important>
oznu/guacamole has been deprecated. Follow this instead:
[[https://www.linode.com/docs/guides/installing-apache-guacamole-through-docker/]]
</note>

First, deploy a base guac with no special extensions/whatever:

<code>
docker run \
  -p 8080:8080 \
  -v /dockerMisc/guac/config:/config \
  oznu/guacamole
</code>

Log in with the default credentials (guacadmin/guacadmin). If they don't take, restart the container. Create a new user, and disable or delete guacadmin. Stop the container.

Copy guacamole-auth-duo-1.0.0.jar from extensions-available to extensions.

Add the following to guacamole.properties:

<code>
# duo config
duo-api-hostname: api-fdafdasa.duosecurity.com
duo-integration-key: fdafdas
duo-secret-key: fdafdas
duo-application-key: fdafdsfds
</code>

Generate the duo-application-key with pwgen 40 (must be at least 40 chars!)

Edit the container's environment parameters to include EXTENSIONS=auth-duo (e.g. use duplicate/edit in portainer).

Make sure the proper hostname(s) are added to the "approved application hostnames" section for the app in Duo!
===== Wordpress =====
TBD

===== Pastebin =====
TBD

===== Plex? =====
I didn't think I would, yet here we are...

https://hub.docker.com/r/linuxserver/plex

Samba mount in fstab:
<code>
//jennay/media /smb cifs credentials=/home/john/.smbcreds,iocharset=utf8,vers=2.1,sec=ntlmssp 0 0
</code>

.smbcreds
<code>
username=derp
password=derp123
</code>

Do it! (Claim Key: https://www.plex.tv/claim/)
<code>
docker create \
  --name=Plex \
  --net=host \
  -e PUID=1000 \
  -e PGID=1000 \
  -e VERSION=docker \
  -e UMASK_SET=022 \
  -e PLEX_CLAIM=keyGoesHere \
  -v /dockerMisc/plex/config:/config \
  -v /smb/TV:/tv \
  -v /smb/Movies:/movies \
  --restart unless-stopped \
  linuxserver/plex
</code>

===== Dokuwiki =====
https://hub.docker.com/r/linuxserver/dokuwiki

===== Transmission =====
<code>
docker create \
  --name=Transmission \
  -e PUID=1000 \
  -e PGID=1000 \
  -e TZ=America/New_York \
  -p 9091:9091 \
  -p 51413:51413 \
  -p 51413:51413/udp \
  -v /dockerMisc/transmission/config:/config \
  -v /dockerMisc/transmission/downloads:/downloads \
  -v /dockerMisc/transmission/watch:/watch \
  --restart unless-stopped \
  linuxserver/transmission
</code>

In settings.json, set "rpc-host-whitelist-enabled": false

===== Nextcloud =====
<code>
docker run -d \
  --name=nextcloud \
  -e PUID=1000 \
  -e PGID=1000 \
  -e TZ=America/New_York \
  -p 443:443 \
  -v /dockerMisc/nextcloud:/config \
  -v /mnt/data/nextcloud:/data \
  --restart unless-stopped \
  lscr.io/linuxserver/nextcloud
</code>

===== Time Machine / AFP =====
https://hub.docker.com/r/mbentley/timemachine
<code>
docker run -d --restart=always \
  --net=host \
  --name timemachine \
  -e CUSTOM_AFP_CONF="false" \
  -e CUSTOM_USER="false" \
  -e LOG_LEVEL="info" \
  -e MIMIC_MODEL="TimeCapsule6,106" \
  -e TM_USERNAME="timemachine" \
  -e TM_GROUPNAME="timemachine" \
  -e PASSWORD="timemachine" \
  -e SET_PERMISSIONS="false" \
  -e SHARE_NAME="TimeMachine" \
  -e VOLUME_SIZE_LIMIT="0" \
  -v /twotbraid/timemachine:/opt/timemachine \
  -v timemachine-netatalk:/var/netatalk \
  -v timemachine-logs:/var/log/supervisor \
  mbentley/timemachine
</code>

===== PORTS =====
{{ :docker:docker_port_mapping.png?&700 |}}