Try deply Pterodactyl, failed

2026-05-26 20:49:55 +00:00 · 2024-03-09 11:45:50 +00:00
parent b7996e5046
commit 7e83c817ec
15 changed files with 430 additions and 3 deletions
@@ -12,7 +12,7 @@ Image=ghcr.io/gethomepage/homepage:latest
 Volume=/etc/homepage:/app/config:z
 PodmanArgs=--privileged
 Volume=/run/podman/podman.sock:/var/run/docker.sock:z
-AutoUpdate=local
+AutoUpdate=registry
 Network=web.network

 Label="traefik.enable=true"
@@ -21,6 +21,22 @@ Label="traefik.http.routers.homepage.entrypoints=https"

 Label="traefik.http.routers.homepage.tls.certresolver=letsencrypt"

+
+Label="traefik.http.middlewares.compress.compress=true"
+
+Label="traefik.http.middlewares.hsts.headers.stsincludesubdomains=false"
+Label="traefik.http.middlewares.hsts.headers.stspreload=true"
+Label="traefik.http.middlewares.hsts.headers.stsseconds=31536000"
+Label="traefik.http.middlewares.hsts.headers.isdevelopment=false"
+
+Label="traefik.http.routers.homepage.middlewares=hsts,compress"
+
+
+Label="homepage.group=Public"
+Label="homepage.name=Homepage"
+Label="homepage.href=https://homepage.ellis.link/"
+Label="homepage.description=Here!"
+
 [Service]
 Restart=on-failure
 TimeoutStartSec=900
@@ -0,0 +1,7 @@
+[Network]
+DisableDNS=false
+Internal=true
+IPv6=true
+# Manual subnet to avoid issues with DNS resolution
+# Subnet=10.89.1.0/24
+# Gateway=10.89.1.1
@@ -19,14 +19,22 @@ Label="traefik.http.routers.jade-website-frontend.entrypoints=https"

 Label="traefik.http.routers.jade-website-frontend.tls.certresolver=letsencrypt"

+
 Label="traefik.http.middlewares.compress.compress=true"

 Label="traefik.http.middlewares.hsts.headers.stsincludesubdomains=false"
 Label="traefik.http.middlewares.hsts.headers.stspreload=true"
 Label="traefik.http.middlewares.hsts.headers.stsseconds=31536000"
 Label="traefik.http.middlewares.hsts.headers.isdevelopment=false"
+
 Label="traefik.http.routers.jade-website-frontend.middlewares=hsts,compress"

+Label="homepage.group=Public"
+Label="homepage.name=Website"
+Label="homepage.href=https://jade.ellis.link/"
+Label="homepage.siteMonitor=https://jade.ellis.link/"
+Label="homepage.description=My personal website!"
+
 [Service]
 Restart=on-failure
 TimeoutStartSec=900
@@ -20,6 +20,16 @@ Label="traefik.http.routers.thelounge.entrypoints=https"

 Label="traefik.http.routers.thelounge.tls.certresolver=letsencrypt"

+
+Label="traefik.http.middlewares.compress.compress=true"
+
+Label="traefik.http.middlewares.hsts.headers.stsincludesubdomains=false"
+Label="traefik.http.middlewares.hsts.headers.stspreload=true"
+Label="traefik.http.middlewares.hsts.headers.stsseconds=31536000"
+Label="traefik.http.middlewares.hsts.headers.isdevelopment=false"
+
+Label="traefik.http.routers.thelounge.middlewares=hsts,compress"
+
 Label="homepage.group=Social"
 Label="homepage.name=TheLounge"
 Label="homepage.href=https://thelounge.ellis.link/"
@@ -30,11 +30,19 @@ Volume=/etc/traefik:/etc/traefik:ro,z
 AutoUpdate=registry
 Network=web.network

-IP=176.126.240.240
-IP6=fe80::9724:38eb:9b0f:df7c
+# IP=176.126.240.240
+# IP6=fe80::9724:38eb:9b0f:df7c

 Exec=traefik --configFile=/etc/traefik/config.toml 

+
+Label="traefik.http.middlewares.compress.compress=true"
+
+Label="traefik.http.middlewares.hsts.headers.stsincludesubdomains=false"
+Label="traefik.http.middlewares.hsts.headers.stspreload=true"
+Label="traefik.http.middlewares.hsts.headers.stsseconds=31536000"
+Label="traefik.http.middlewares.hsts.headers.isdevelopment=false"
+
 [Service]
 Restart=on-failure
 TimeoutStartSec=900
@@ -56,6 +56,11 @@ storage:
  directories:
    - path: /var/opt/thelounge
    - path: /var/srv/traefik
+    # - path: /var/opt/mysql-database
+    # - path: /var/opt/pterodactyl
+    # - path: /var/opt/pterodactyl/panel/nginx
+    # - path: /var/opt/pterodactyl/panel/var
+    # - path: /var/opt/pterodactyl/panel/logs
    # - path: /etc/firewalld
    #   mode: 0750
  # See: https://docs.fedoraproject.org/en-US/fedora-coreos/storage/
@@ -0,0 +1,27 @@
+
+
+[Unit]
+Description=MySQL Server
+Wants=network-online.target
+After=network-online.target
+
+[Container]
+ContainerName=database-mysql
+NoNewPrivileges=true
+Image=docker.io/library/mysql:8.0
+Volume=/var/opt/mysql-database:/var/lib/mysql:Z,U
+AutoUpdate=registry
+Network=internal.network
+EnvironmentFile=mysql.env
+Exec=mysqld --default-authentication-plugin=mysql_native_password
+
+
+Label="homepage.group=Services"
+Label="homepage.name=MySQL"
+
+[Service]
+Restart=on-failure
+TimeoutStartSec=900
+
+[Install]
+WantedBy=default.target
@@ -0,0 +1,5 @@
+MYSQL_ROOT_PASSWORD=Ky32ndOitmzJVrQx4RHHD
+
+MYSQL_DATABASE=panel
+MYSQL_USER=pterodactyl
+MYSQL_PASSWORD=3z4CF7IjwEbQeFS01E53d0wsYjVJ2CpH
@@ -0,0 +1,7 @@
+[Network]
+DisableDNS=false
+Internal=true
+IPv6=true
+Driver=bridge
+
+Options=com.docker.network.bridge.name=wings0
@@ -0,0 +1,59 @@
+[Unit]
+Description=Pterodactyl Wings
+Wants=network-online.target
+After=network-online.target
+
+[Container]
+ContainerName=pterodactyl-wings
+NoNewPrivileges=true
+Image=ghcr.io/pterodactyl/wings:latest
+
+Volume=/run/podman/podman.sock:/var/run/docker.sock:z
+Volume=/etc/ssl/certs:/etc/ssl/certs:ro
+Volume=/tmp/pterodactyl/:/tmp/pterodactyl/:ro
+Volume=/var/opt/pterodactyl/wings/etc/:/etc/pterodactyl:z,U
+Volume=/var/opt/pterodactyl/wings/logs:/var/log/pterodactyl:z,U
+
+PublishPort=2022:2022
+
+Environment=TZ=Europe/London
+Environment=WINGS_UID=988
+Environment=WINGS_GID=988
+Environment=WINGS_USERNAME=pterodactyl
+
+AutoUpdate=registry
+Network=web.network
+Network=pterodactyl-wings-0.network
+
+Label="traefik.enable=true"
+
+
+Label="traefik.http.routers.pterodactyl-wings.entrypoints=http"
+Label="traefik.http.routers.pterodactyl-wings.rule=Host(`wings-0.ellis.link`)"
+Label="traefik.http.routers.pterodactyl-wings.middlewares=panel_https"
+Label="traefik.http.middlewares.panel_https.redirectscheme.scheme=https"
+# HTTPS
+Label="traefik.http.routers.pterodactyl-wings-https.entrypoints=https"
+Label="traefik.http.routers.pterodactyl-wings-https.rule=Host(`wings-0.ellis.link`)"
+Label="traefik.http.routers.pterodactyl-wings-https.tls=true"
+Label="traefik.http.routers.pterodactyl-wings-https.tls.certresolver=letsencrypt"
+Label="traefik.http.services.pterodactyl-wings-https.loadbalancer.server.port=443"
+# Label="traefik.http.routers.pterodactyl-wings-https.middlewares=hsts,compress"
+# 
+# Label="traefik.http.middlewares.compress.compress=true"
+# 
+# Label="traefik.http.middlewares.hsts.headers.stsincludesubdomains=false"
+# Label="traefik.http.middlewares.hsts.headers.stspreload=true"
+# Label="traefik.http.middlewares.hsts.headers.stsseconds=31536000"
+# Label="traefik.http.middlewares.hsts.headers.isdevelopment=false"
+
+
+Label="homepage.group=Games"
+Label="homepage.name=Pterodactyl Wings"
+
+[Service]
+Restart=on-failure
+TimeoutStartSec=900
+
+[Install]
+WantedBy=default.target
@@ -0,0 +1,61 @@
+
+
+[Unit]
+Description=Pterodactyl Panel
+Wants=network-online.target
+After=network-online.target
+
+Wants=redis.service
+Wants=mysql.service
+
+[Container]
+ContainerName=pterodactyl-panel
+NoNewPrivileges=true
+Image=ghcr.io/pterodactyl/panel:latest
+Volume=/var/opt/pterodactyl/panel/var:/app/var/:z,U
+Volume=/var/opt/pterodactyl/panel/logs:/app/storage/logs:z,U
+Volume=/var/opt/pterodactyl/panel/nginx:/etc/nginx/conf.d:z,U
+
+EnvironmentFile=pterodactyl.env
+
+AutoUpdate=registry
+Network=web.network
+Network=internal.network
+
+Label="traefik.enable=true"
+
+
+Label="traefik.http.routers.pterodactyl-panel.entrypoints=http"
+Label="traefik.http.routers.pterodactyl-panel.rule=Host(`pterodactyl.ellis.link`)"
+Label="traefik.http.routers.pterodactyl-panel.middlewares=panel_https"
+Label="traefik.http.middlewares.panel_https.redirectscheme.scheme=https"
+# HTTPS
+Label="traefik.http.routers.pterodactyl-panel-https.entrypoints=https"
+Label="traefik.http.routers.pterodactyl-panel-https.rule=Host(`pterodactyl.ellis.link`)"
+Label="traefik.http.routers.pterodactyl-panel-https.tls=true"
+Label="traefik.http.routers.pterodactyl-panel-https.tls.certresolver=letsencrypt"
+Label="traefik.http.services.pterodactyl-panel-https.loadbalancer.server.port=80"
+# Label="traefik.http.routers.pterodactyl-panel-https.middlewares=hsts,compress"
+# 
+# Label="traefik.http.middlewares.compress.compress=true"
+# 
+# Label="traefik.http.middlewares.hsts.headers.stsincludesubdomains=false"
+# Label="traefik.http.middlewares.hsts.headers.stspreload=true"
+# Label="traefik.http.middlewares.hsts.headers.stsseconds=31536000"
+# Label="traefik.http.middlewares.hsts.headers.isdevelopment=false"
+
+
+Label="homepage.group=Games"
+Label="homepage.name=Pterodactyl Panel"
+Label="homepage.href=https://pterodactyl.ellis.link/"
+Label="homepage.description=Game server manager"
+Label="homepage.widget.type=pterodactyl"
+Label="homepage.widget.url=https://pterodactyl.ellis.link"
+Label="homepage.widget.key=ptla_1nPixV9s1UJccf98TUGSO2ViY92MndM7qZKH76k1Tm5"
+
+[Service]
+Restart=on-failure
+TimeoutStartSec=900
+
+[Install]
+WantedBy=default.target
@@ -0,0 +1,17 @@
+
+DB_PASSWORD=3z4CF7IjwEbQeFS01E53d0wsYjVJ2CpH
+
+APP_URL=https://pterodactyl.ellis.link
+APP_TIMEZONE=Europe/London
+APP_SERVICE_AUTHOR=pterodactyl@ellis.link
+
+APP_ENV=production
+APP_ENVIRONMENT_ONLY=false
+CACHE_DRIVER=redis
+SESSION_DRIVER=redis
+QUEUE_DRIVER=redis
+
+REDIS_HOST=redis
+DB_HOST=database-mysql
+
+TRUSTED_PROXIES=*
@@ -0,0 +1,24 @@
+
+
+[Unit]
+Description=Redis Server
+Wants=network-online.target
+After=network-online.target
+
+[Container]
+ContainerName=redis
+NoNewPrivileges=true
+Image=docker.io/library/redis:alpine
+
+AutoUpdate=registry
+Network=internal.network
+
+Label="homepage.group=Services"
+Label="homepage.name=Redis"
+
+[Service]
+Restart=on-failure
+TimeoutStartSec=900
+
+[Install]
+WantedBy=default.target
@@ -0,0 +1,18 @@
+debug: false
+uuid: 5bbf3bd5-4b9b-4ee4-8cd9-6ddd9dd88781
+token_id: xsKUjOLapARK0xmv
+token: 7rdoH6dUAODDBs5FFUPsYFxHQhi5IHx8xnnMuGGC8ZxXR7JPRO6HLP6X5WjlCY3v
+api:
+  host: 0.0.0.0
+  port: 443
+  ssl:
+    enabled: true
+    cert: /etc/letsencrypt/live/wings-0.ellis.link/fullchain.pem
+    key: /etc/letsencrypt/live/wings-0.ellis.link/privkey.pem
+  upload_limit: 100
+system:
+  data: /var/lib/pterodactyl/volumes
+  sftp:
+    bind_port: 2022
+allowed_mounts: []
+remote: 'https://pterodactyl.ellis.link'