Marko Oldenburg
c803838b26
All checks were successful
Create dokuwiki docker image / Explore-Gitea-Actions (push) Successful in 24s
|
||
---|---|---|
.gitea/workflows | ||
docker-compose.yml | ||
Dockerfile | ||
entrypoint.sh | ||
LICENSE | ||
README.md | ||
sshd_config |
docker-ssh-jumphost
Dockerfile for building an image that runs an OpenSSH server that's configured to act as a ProxJump host only.
The server listens on port 2222. The only user that is able ta connect is bastion. It is not possible to get a terminal on the host. It is only suitable to ProxyJump to other hosts.
At the first startup the host SSH keys will be created in /config as well as an authorized_keys file.
Just build the image, define a volume oder bind mount for /config and add your public key to the authorized_keys file.
Expose port 2222 and you can connect as user bastion with your defined private key.
Sample config for docker-compose
version: "3"
services:
ssh-jumphost:
container_name: ssh-jumphost
build:
context: https://github.com/chrisb86/docker-ssh-jumphost.git
volumes:
- ./config:/config
ports:
- 2222:2222
tmpfs:
- /tmp
- /run
- /var/tmp
read_only: true
In this example the whole container is readonly and directories that have to be writable are mounted with tmpfs.
Just create the docker-compose.yml run docker-compose up -d --build
and you're done.