binhex-official-gluetun
Docker 应用程序 from Binhex's Repository
概述
运行时参数
- 网络用户界面
http://[IP]:[PORT:8000]- 网络
bridge- 外壳
sh- 特权
- false
- 额外参数
--cap-add=NET_ADMIN --device /dev/net/tun:/dev/net/tun
模板配置
This is the container path to store gluetun related configuration.
- 目标
- /gluetun
- 默认值
- /mnt/cache/appdata/gluetun
HTTP Control Server port
- 目标
- 8000
- 默认值
- 8000
HTTP Proxy port (when HTTPPROXY=on)
- 目标
- 8888
- 默认值
- 8888
Shadowsocks port TCP (when SHADOWSOCKS=on)
- 目标
- 8388
- 默认值
- 8388
Shadowsocks port UDP (when SHADOWSOCKS=on)
- 目标
- 8388
- 默认值
- 8388
Specify a supported VPN provider to use
- 目标
- VPN_SERVICE_PROVIDER
- 默认值
- private internet access|airvpn|cyberghost|expressvpn|fastestvpn|hidemyass|ipvanish|ivpn|mullvad|nordvpn|perfect privacy|privado|privatevpn|protonvpn|purevpn|slickvpn|surfshark|torguard|vpnsecure|vpn unlimited|vyprvpn|wevpn|windscribe|custom
VPN protocol to use. Not all providers support Wireguard.
- 目标
- VPN_TYPE
- 默认值
- openvpn|wireguard
Specify a custom network interface name to use
- 目标
- VPN_INTERFACE
- 默认值
- tun0|en0
Encryption preset, 'none' disables the cipher and auth OpenVPN options (not recommended).
- 目标
- PRIVATE_INTERNET_ACCESS_OPENVPN_ENCRYPTION_PRESET
- 默认值
- normal|strong|none
OpenVPN username (required for OpenVPN)
- 目标
- OPENVPN_USER
OpenVPN password (required for OpenVPN)
- 目标
- OPENVPN_PASSWORD
Network protocol to use for OpenVPN
- 目标
- OPENVPN_PROTOCOL
- 默认值
- udp|tcp
Set the OpenVPN version to run
- 目标
- OPENVPN_VERSION
- 默认值
- 2.6|2.5
Specify a target VPN server IP address to use
- 目标
- OPENVPN_ENDPOINT_IP
Specify a target VPN server port number to use
- 目标
- OPENVPN_ENDPOINT_PORT
OpenVPN verbosity level (1-6)
- 目标
- OPENVPN_VERBOSITY
- 默认值
- 1|2|3|4|5|6
Space delimited OpenVPN flags to pass to openvpn
- 目标
- OPENVPN_FLAGS
Run OpenVPN as root
- 目标
- OPENVPN_ROOT
- 默认值
- no|yes
Specify a custom cipher to use (e.g. aes-256-gcm)
- 目标
- OPENVPN_CIPHERS
Specify a custom auth algorithm to use (e.g. sha256)
- 目标
- OPENVPN_AUTH
Set the MSS fix parameter (0-9999, 0 to use defaults)
- 目标
- OPENVPN_MSSFIX
- 默认值
- 0
Path to custom OpenVPN configuration file for custom provider
- 目标
- OPENVPN_CUSTOM_CONFIG
Wireguard client private key (required for Wireguard)
- 目标
- WIREGUARD_PRIVATE_KEY
Wireguard IP network interface address (xx.xx.xx.xx/xx)
- 目标
- WIREGUARD_ADDRESSES
Wireguard server public key
- 目标
- WIREGUARD_PUBLIC_KEY
Wireguard server endpoint IP address
- 目标
- WIREGUARD_ENDPOINT_IP
Wireguard server endpoint port number
- 目标
- WIREGUARD_ENDPOINT_PORT
Wireguard pre-shared key
- 目标
- WIREGUARD_PRESHARED_KEY
Wireguard peer allowed IPs (CSV format)
- 目标
- WIREGUARD_ALLOWED_IPS
- 默认值
- 0.0.0.0/0,::/0
Wireguard implementation to use
- 目标
- WIREGUARD_IMPLEMENTATION
- 默认值
- auto|kernelspace|userspace
Wireguard MTU (1-65535)
- 目标
- WIREGUARD_MTU
- 默认值
- 1400
Wireguard persistent keepalive interval (e.g. 25s)
- 目标
- WIREGUARD_PERSISTENT_KEEPALIVE_INTERVAL
Comma separated list of countries
- 目标
- SERVER_COUNTRIES
Comma separated list of regions
- 目标
- SERVER_REGIONS
Comma separated list of cities
- 目标
- SERVER_CITIES
Comma separated list of server hostnames
- 目标
- SERVER_HOSTNAMES
Comma separated list of server names
- 目标
- SERVER_NAMES
Comma separated list of server categories (NordVPN)
- 目标
- SERVER_CATEGORIES
Enable custom port forwarding code for supported providers
- 目标
- VPN_PORT_FORWARDING
- 默认值
- off|on
Choose the custom port forwarding code to use
- 目标
- VPN_PORT_FORWARDING_PROVIDER
File path to use for writing the forwarded port obtained
- 目标
- VPN_PORT_FORWARDING_STATUS_FILE
- 默认值
- /gluetun/forwarded_port
Port redirection for the VPN server side port forwarded
- 目标
- VPN_PORT_FORWARDING_LISTENING_PORT
Comma separated list of ports to allow from the VPN server side
- 目标
- FIREWALL_VPN_INPUT_PORTS
Comma separated list of ports to allow through the default interface
- 目标
- FIREWALL_INPUT_PORTS
Prints every firewall related command (debugging only)
- 目标
- FIREWALL_DEBUG
- 默认值
- off|on
Comma separated subnets that Gluetun is allowed to access
- 目标
- FIREWALL_OUTBOUND_SUBNETS
Activate DNS over TLS with Unbound
- 目标
- DNS_SERVER
- 默认值
- on
How to connect to upstream DNS servers: dot (DNS over TLS), doh (DNS over HTTPS), plain (UDP DNS)
- 目标
- DNS_UPSTREAM_RESOLVER_TYPE
- 默认值
- dot|doh|plain
Comma delimited list of DNS over TLS providers, valid values are: 'google', 'quad9', 'quadrant', 'cleanbrowsing', 'libredns', 'opendns'
- 目标
- DNS_UPSTREAM_RESOLVERS
- 默认值
Comma separated list of domain names to leave unblocked from the filtering
- 目标
- DNS_UNBLOCK_HOSTNAMES
Unbound caching
- 目标
- DNS_CACHING
- 默认值
- on|off
All private CIDRs ranges. Comma separated list of CIDRs or single IP addresses Unbound won't resolve to. Note that the default setting prevents DNS rebinding
- 目标
- DNS_BLOCK_IP_PREFIXES
- 默认值
- 127.0.0.1/8,10.0.0.0/8,172.16.0.0/12,192.168.0.0/16,169.254.0.0/16,::1/128,fc00::/7,fe80::/10,::ffff:7f00:1/104,::ffff:a00:0/104,::ffff:a9fe:0/112,::ffff:ac10:0/108,::ffff:c0a8:0/112
DNS IPv6 resolution
- 目标
- DNS_UPSTREAM_IPV6
- 默认值
- off|on
Comma separated list of IP addresses to not resolve public domains to
- 目标
- DNS_BLOCK_IPS
Comma separated list of public domain names to exclude from DNS rebinding protection
- 目标
- DNS_REBINDING_PROTECTION_EXEMPT_HOSTNAMES
Period to update block lists and restart Unbound (e.g. 24h, 0 to disable)
- 目标
- DNS_UPDATE_PERIOD
- 默认值
- 24h
IP address to use as DNS resolver
- 目标
- DNS_ADDRESS
- 默认值
- 127.0.0.1
Keep /etc/resolv.conf untouched
- 目标
- DNS_KEEP_NAMESERVER
- 默认值
- off|on
Block malicious hostnames and IPs with Unbound
- 目标
- BLOCK_MALICIOUS
- 默认值
- on|off
Block surveillance hostnames and IPs with Unbound
- 目标
- BLOCK_SURVEILLANCE
- 默认值
- off|on
Block ads hostnames and IPs with Unbound
- 目标
- BLOCK_ADS
- 默认值
- off|on
Enable the internal HTTP proxy
- 目标
- HTTPPROXY
- 默认值
- off|on
Logs every tunnel requests
- 目标
- HTTPPROXY_LOG
- 默认值
- off|on
Internal listening address for the HTTP proxy
- 目标
- HTTPPROXY_LISTENING_ADDRESS
- 默认值
- :8888
Username to use to connect to the HTTP proxy
- 目标
- HTTPPROXY_USER
Password to use to connect to the HTTP proxy
- 目标
- HTTPPROXY_PASSWORD
Stealth mode means HTTP proxy headers are not added
- 目标
- HTTPPROXY_STEALTH
- 默认值
- off|on
Enable the internal Shadowsocks proxy
- 目标
- SHADOWSOCKS
- 默认值
- off|on
Enable Shadowsocks logging
- 目标
- SHADOWSOCKS_LOG
- 默认值
- off|on
Internal listening address for Shadowsocks
- 目标
- SHADOWSOCKS_LISTENING_ADDRESS
- 默认值
- :8388
Password to use to connect to Shadowsocks
- 目标
- SHADOWSOCKS_PASSWORD
AEAD Cipher to use for Shadowsocks
- 目标
- SHADOWSOCKS_CIPHER
- 默认值
- chacha20-ietf-poly1305|aes-128-gcm|aes-256-gcm
Authentication configuration for the HTTP Control Server
- 目标
- HTTP_CONTROL_SERVER_AUTH_DEFAULT_ROLE
- 默认值
- {"auth":"basic","username":"controlserver","password":"controlserver"}
Listening address for the HTTP Control Server
- 目标
- HTTP_CONTROL_SERVER_ADDRESS
- 默认值
- :8000
Enable logging of requests for the HTTP Control Server
- 目标
- HTTP_CONTROL_SERVER_LOG
- 默认值
- on|off
Path to a TOML file containing authentication configuration for the HTTP Control Server
- 目标
- HTTP_CONTROL_SERVER_AUTH_CONFIG_FILEPATH
Comma-separated addresses to ping on every internal health check (replaces HEALTH_TARGET_ADDRESS)
- 目标
- HEALTH_TARGET_ADDRESSES
- 默认值
- google.com:443
Initial duration to wait for the VPN to be ready
- 目标
- HEALTH_VPN_DURATION_INITIAL
- 默认值
- 6s
Additional duration to add for each consecutive VPN failure
- 目标
- HEALTH_VPN_DURATION_ADDITION
- 默认值
- 5s
Duration to wait after a success check
- 目标
- HEALTH_SUCCESS_WAIT_DURATION
- 默认值
- 5s
Internal health check server listening address
- 目标
- HEALTH_SERVER_ADDRESS
- 默认值
- 127.0.0.1:9999
Period to update VPN servers data e.g. '24h' (0 to disable)
- 目标
- UPDATER_PERIOD
- 默认值
- 0
Ratio of servers to be found for update to succeed
- 目标
- UPDATER_MIN_RATIO
- 默认值
- 0.8
List of providers to update servers data for
- 目标
- UPDATER_VPN_SERVICE_PROVIDERS
Path of servers.json file (empty to disable caching)
- 目标
- STORAGE_FILEPATH
- 默认值
- /gluetun/servers.json
Specify a timezone to use to have correct log times. i.e. Europe/London
- 目标
- TZ
User ID to run as non root
- 目标
- PUID
- 默认值
- 99
Group ID to run as non root
- 目标
- PGID
- 默认值
- 100
Check for public IP address information on VPN connection
- 目标
- PUBLICIP_ENABLED
- 默认值
- true
Public IP echo service API to use
- 目标
- PUBLICIP_API
- 默认值
- ipinfo
Optional API token for the public IP echo service
- 目标
- PUBLICIP_API_TOKEN
Filepath to store the public IP address assigned
- 目标
- PUBLICIP_FILE
- 默认值
- /gluetun/ip
Logs a message indicating if a newer version is available
- 目标
- VERSION_INFORMATION
- 默认值
- on
下载统计数据
长期下载总量
详细信息
qmcgaw/gluetun在Unraid 上运行 binhex-official-gluetun 。
binhex-official-gluetun 已被列入Unraid OS 的社区应用程序。探索Unraid ,构建灵活的家庭服务器、NAS 或家庭实验室。