VPN_LDAP_DOCKER-COMPOSE.YML

1. version: '2'
2. services:
3.   openldap:
4.     image: osixia/openldap:1.2.1
5.     container_name: openldap
6.     environment:
7.       LDAP_LOG_LEVEL: "256"
8.       LDAP_ORGANISATION: "example"
9.       LDAP_DOMAIN: "example.com"
10.       LDAP_BASE_DN: ""
11.       LDAP_ADMIN_PASSWORD: "admin"
12.       LDAP_CONFIG_PASSWORD: "config"
13.       LDAP_READONLY_USER: "false"
14.       #LDAP_READONLY_USER_USERNAME: "readonly"
15.       #LDAP_READONLY_USER_PASSWORD: "readonly"
16.       LDAP_RFC2307BIS_SCHEMA: "false"
17.       LDAP_BACKEND: "mdb"
18.       LDAP_TLS: "false"
19.       #LDAP_TLS_CRT_FILENAME: "ldap.crt"
20.       #LDAP_TLS_KEY_FILENAME: "ldap.key"
21.       #LDAP_TLS_CA_CRT_FILENAME: "ca.crt"
22.       #LDAP_TLS_ENFORCE: "false"
23.       #LDAP_TLS_CIPHER_SUITE: "SECURE256:-VERS-SSL3.0"
24.       #LDAP_TLS_PROTOCOL_MIN: "3.1"
25.       #LDAP_TLS_VERIFY_CLIENT: "demand"
26.       LDAP_REPLICATION: "false"
27.       #LDAP_REPLICATION_CONFIG_SYNCPROV: "binddn="cn=admin,cn=config" bindmethod=simple credentials=$LDAP_CONFIG_PASSWORD searchbase="cn=config" type=refreshAndPersist retry="60 +" timeout=1 starttls=critical"
28.       #LDAP_REPLICATION_DB_SYNCPROV: "binddn="cn=admin,$LDAP_BASE_DN" bindmethod=simple credentials=$LDAP_ADMIN_PASSWORD searchbase="$LDAP_BASE_DN" type=refreshAndPersist interval=00:00:00:10 retry="60 +" timeout=1 starttls=critical"
29.       #LDAP_REPLICATION_HOSTS: "#PYTHON2BASH:['ldap://ldap.example.org','ldap://ldap2.example.org']"
30.       KEEP_EXISTING_CONFIG: "true"
31.       LDAP_REMOVE_CONFIG_AFTER_SETUP: "true"
32.       #LDAP_SSL_HELPER_PREFIX: "ldap"
33.     tty: true
34.     stdin_open: true
35.     volumes:
36.      - ./ldap/var:/var/lib/ldap
37.       - ./ldap/etc:/etc/ldap/slapd.d
38.       - ./ldap/certs:/container/service/slapd/assets/certs/
39.     ports:
40.      - "389:389"
41.       - "636:636"
42.     domainname: "example.com" # important: same as hostname
43.     hostname: "example.com"
44.   phpldapadmin:
45.     image: osixia/phpldapadmin:latest
46.     container_name: phpldapadmin
47.     environment:
48.       PHPLDAPADMIN_LDAP_HOSTS: "openldap"
49.       PHPLDAPADMIN_HTTPS: "false"
50.     ports:
51.      - "51000:80"
52.       #- "443:443"
53.     depends_on:
54.      - openldap
55.   freeradius:
56.     image: irasnyd/freeradius-ldap:latest
57.     container_name: freeradius
58.     ports:
59.      - "1812:1812/udp"
60.       - "1813:1813/udp"
61.     environment:
62.      - "LDAP_HOST=openldap"
63.       - "LDAP_USER=cn=admin,dc=example,dc=com"
64.       - "LDAP_PASS=admin"
65.       - "LDAP_BASEDN=dc=example,dc=com"
66.       - "LDAP_USER_BASEDN=ou=users,dc=example,dc=com"
67.       - "LDAP_GROUP_BASEDN=ou=vpnusers,ou=groups,dc=example,dc=com"
68.       #- "LDAP_RADIUS_ACCESS_GROUP=vpnaccess"
69.       - "RADIUS_CLIENT_CREDENTIALS=1.2.3.4:password1234,5.6.7.8:password5678"
70.     mem_limit: "1g"
71.     restart: "always"
72.     depends_on:
73.      - openldap
74.   softether:
75.     image: siomiz/softethervpn
76.     container_name: vpn
77.     network_mode: host
78.     privileged: true
79.     #ports:
80.     #  - 500:500/udp
81.     #  - 4500:4500/udp
82.     #  - 1701:1701/tcp
83.     #  - 1194:1194/udp
84.     #  - 5555:5555/tcp
85.     #  - 992:992/tcp
86.     environment:
87.      - PSK=password
88.       - USERNAME=user
89.       - PASSWORD=password
90.       - SPW=password
91.       - HPW=password
92.     volumes:
93.      - "./vpn/:/usr/vpnserver/server_log/"
94.     #cap_add:
95.     #  - NET_ADMIN