https://blog.sodawa.com/tags/ops/Recent content in Ops on Personal Blog of Maximilian EhlersHugo -- gohugo.ioen-usThu, 21 Nov 2019 17:49:58 +0000https://blog.sodawa.com/blog/docker-in-wireguard/Thu, 21 Nov 2019 17:49:58 +0000https://blog.sodawa.com/blog/docker-in-wireguard/Adding docker containers to Wireguard network Docker is the most convenient way of delivering my applications to servers, and Wireguard is the best VPN tool I have found so far. Naturally I would like to combine the two to give some of my Apps access to a Private Network, in which they can find a database for example. This greatly increases security and eliminates a while lot of headaches around securing the database.https://blog.sodawa.com/blog/security-and-convenience-with-docker-private-networks/Mon, 14 Aug 2017 18:56:00 +0000https://blog.sodawa.com/blog/security-and-convenience-with-docker-private-networks/Docker is great, and I do not want to write much about what it does, but rather a problem that I have faced in my setup. What I wanted to do was hosting a webserver inside of 1 container and a git client (https://github.com/go-gitea/gitea) in another. The webserver should be able to proxy requests from a certain url to the git client. First attempt What I did first was exposing a port on my git client as follows:https://blog.sodawa.com/blog/deploying-ssl-secured-website-in-10-minutes/Fri, 07 Jul 2017 12:12:00 +0000https://blog.sodawa.com/blog/deploying-ssl-secured-website-in-10-minutes/Caddy Through a colleague I have recently stumbled upon caddy. It is a new Webserver written in Go. You might think why not use nginx?, and this was exactly my question. The answer is best explained by the following config file for caddy: ehlers.space Yup, that is it. This will run this blog with SSL through Letsencrypt and keep it up to date. No need for manual certification extending or even using the auto-cert bot.