mirror of
https://github.com/hackerschoice/segfault.git
synced 2024-06-28 09:41:18 +00:00
encfs | ||
guest | ||
host | ||
provision | ||
docker-compose.yml | ||
Makefile | ||
README.md |
segfault
Regional Cluster design:
graph TD;
DockerShell1-->DockerSSHD1;
DockerShell2-->DockerSSHD1;
DockerShell3-->DockerSSHD2;
DockerShell4-->DockerSSHD2;
DockerShell5-->DockerSSHD2;
DockerSSHD1-->Server1;
DockerSSHD2-->Server2;
Server1-- Optional VPN -->OpenVPN;
Server2-- Optional VPN -->OpenVPN;
OpenVPN -- Leaving Region -->NordVPN
NordVPN-->INTERNETZ
- Server is running OpenSSH in a docker and shares /var/run/docker.sock with the OpenSSH-Docker instance. This allows to have just the docker_cli to be installed and spin up a shell for the user without having to run an extra docker-daemon (but using the docker-daemon from Server instead).
- On small deployments the
OpenVPN Server
can be the same as Server[12]. This allows to run everything off 1 single server. - AWS Fargate could be utilized by nesting the entire setup in a Docker-in-Docker (dind) configuration.
Cluster can be deployed in various regions for less latency. TODO:
Helpful links
- https://github.com/nicolaka/netshoot
- https://www.linuxserver.io/ and https://github.com/just-containers/s6-overlay
- https://jordanelver.co.uk/blog/2019/06/03/routing-docker-traffic-through-a-vpn-connection/
- https://hub.docker.com/r/alexaso/dnsmasq-dnscrypt and https://github.com/crazy-max/docker-cloudflared
- https://wiki.archlinux.org/title/EncFS
- https://www.supertechcrew.com/wetty-browser-ssh-terminal/
VPN Providers:
- ProtonVPN
- NordVPN
- https://www.cryptostorm.is/
Hosting providers: