42 lines
1.7 KiB
YAML
42 lines
1.7 KiB
YAML
services:
|
|
rpki-rtr:
|
|
build:
|
|
context: ../..
|
|
dockerfile: deploy/server/Dockerfile
|
|
image: rpki-rtr:latest
|
|
container_name: rpki-rtr-tls
|
|
restart: no
|
|
ports:
|
|
# - "323:323"
|
|
- "324:324"
|
|
environment:
|
|
RPKI_RTR_ENABLE_TLS: "true"
|
|
RPKI_RTR_ENABLE_SSH: "false"
|
|
# RPKI_RTR_TCP_ADDR: "0.0.0.0:323"
|
|
RPKI_RTR_TLS_ADDR: "0.0.0.0:324"
|
|
RPKI_RTR_TLS_CERT_PATH: "${RPKI_RTR_TLS_CERT_PATH:-/app/certs/server-dns.crt}"
|
|
RPKI_RTR_TLS_KEY_PATH: "${RPKI_RTR_TLS_KEY_PATH:-/app/certs/server-dns.key}"
|
|
RPKI_RTR_TLS_CLIENT_CA_PATH: "${RPKI_RTR_TLS_CLIENT_CA_PATH:-/app/certs/client-ca.crt}"
|
|
RPKI_RTR_ENFORCE_TLS_CLIENT_SAN_IP_MATCH: "${RPKI_RTR_ENFORCE_TLS_CLIENT_SAN_IP_MATCH:-false}"
|
|
RPKI_RTR_DB_PATH: "${RPKI_RTR_DB_PATH:-/app/rtr-db}"
|
|
RPKI_RTR_CCR_DIR: "${RPKI_RTR_CCR_DIR:-/app/data}"
|
|
RPKI_RTR_SLURM_DIR: "${RPKI_RTR_SLURM_DIR:-/app/slurm}"
|
|
RPKI_RTR_STRICT_CCR_VALIDATION: "${RPKI_RTR_STRICT_CCR_VALIDATION:-false}"
|
|
RPKI_RTR_SOURCE_REFRESH_INTERVAL_SECS: "${RPKI_RTR_SOURCE_REFRESH_INTERVAL_SECS:-300}"
|
|
RPKI_RTR_MAX_DELTA: "${RPKI_RTR_MAX_DELTA:-10}"
|
|
RPKI_RTR_MAX_CONCURRENT_HANDSHAKES: "${RPKI_RTR_MAX_CONCURRENT_HANDSHAKES:-128}"
|
|
RUST_LOG: "${RUST_LOG:-info}"
|
|
volumes:
|
|
- ${RPKI_RTR_CCR_HOST_DIR:-../../data}:${RPKI_RTR_CCR_DIR:-/app/data}:ro
|
|
- ${RPKI_RTR_DB_HOST_DIR:-../../rtr-db}:${RPKI_RTR_DB_PATH:-/app/rtr-db}
|
|
- ${RPKI_RTR_SLURM_HOST_DIR:-../../data}:${RPKI_RTR_SLURM_DIR:-/app/slurm}:ro
|
|
- ${RPKI_RTR_TLS_CERTS_HOST_DIR:-../../tests/fixtures/tls}:/app/certs:ro
|
|
- ${RPKI_RTR_LOG_HOST_DIR:-../../logs/server}:/app/logs
|
|
networks:
|
|
- rpki_net
|
|
|
|
networks:
|
|
rpki_net:
|
|
name: rpki_net
|
|
driver: bridge
|