本文主要是介绍ubuntu在docker容器中安装strongswan,希望对大家解决编程问题提供一定的参考价值,需要的开发者们随着小编来一起学习吧!
1.起动一个ubuntu容器,我是用的docker compose启动的,compose的配置文件为ipsec-strongswan.yml
services:ipsec-strongswan:image: ubuntu:22.04container_name: ipsec-strongswancap_add:- NET_ADMIN- SYS_ADMIN- SYS_MODULEcommand: "tail -f /dev/null" # 示例:保持容器运行,但不会做任何实际工作volumes:- /opt/services/ipsec-strongswan/ipsec.conf:/etc/ipsec.conf- /opt/services/ipsec-strongswan/ipsec.secrets:/etc/ipsec.secrets- /opt/services/ipsec-strongswan/USERTrust_RSA_Certification_Authority.pem:/etc/ipsec.d/cacerts/USERTrust_RSA_Certification_Authority.pem- /opt/services/ipsec-strongswan/charon-logging.conf:/etc/strongswan.d/charon-logging.conf- /opt/services/ipsec-strongswan/log:/var/log/strongswan
networks:default:name: sill
sudo docker compose -f ipsec-strongswan.yml up -d
2.进入容器内
sudo docker exec -it ipsec-strongswan /bin/bash
3.开始安装
apt-get update
apt-get install strongswan libcharon-extra-plugins
再安装一些常用的软件
apt-get install vim iputils-ping curl mtr
我的配置已经在compose文件里加载了,所以不配了。直接启动
# 启动ipsec
ipsec restart
# 连接connection uk2
ipsec up uk2
连接成功的话显示connection ‘uk2’ established successfully
查看状态
ipsec statusall
停止连接
ipsec down uk2
以下是一些其他命令:
查看网络
ip addr show 简写为 ip a s
查看docker服务的网络
sudo docker inspect -f '{{.Name}}: {{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' nginx jenkins rmqnamesrv mysql rmqbroker rocketmq-console redis6379 redis6380 redis6381 sentinel26379 sentinel26380 sentinel26381 ipsec-strongswan
查看主机路由
ip route show
这篇关于ubuntu在docker容器中安装strongswan的文章就介绍到这儿,希望我们推荐的文章对编程师们有所帮助!
