kunsi/bundlewrap
1
0
Fork 0
Code Issues 1 Pull requests 1 Releases Activity

shuffle some ports around
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details

Browse source
This commit is contained in:
Franzi 2020-09-20 10:29:19 +02:00
parent dc968b75e5
commit bb0b6f2079
Signed by: kunsi
GPG key ID: 12E3D2136B818350
10 changed files with 25 additions and 18 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

19
PORT_MAP.md
View file

@ -4,6 +4,13 @@ All the ports which are used by bundles. Collected here to be able to
easily find available ports for other bundles. easily find available ports for other bundles.
## TCP ## TCP
Rule of thumb: keep ports below 10000 free for stuff that reserves ports.
| Port range | reserved for |
----------- | ------------ |
| 200.. | Matrix |
| 220.. | Generic Web services |
| Port | bundle | usage | | Port | bundle | usage |
| ----------- | -------------------- | ----- | | ----------- | -------------------- | ----- |
| 22 | | sshd | | 22 | | sshd |
@ -15,7 +22,6 @@ easily find available ports for other bundles.
| 443 | nginx | https | | 443 | nginx | https |
| 587 | | postfix submission | | 587 | | postfix submission |
| 993 | | dovecot imap | 993 | | dovecot imap
| 3000 | gitea | gitea |
| 3100 | | grafana | | 3100 | | grafana |
| 3700 | | codimd | | 3700 | | codimd |
| 4090 | | dovecot managesieve | | 4090 | | dovecot managesieve |
@ -24,17 +30,18 @@ easily find available ports for other bundles.
| 5900 | vmhost | qemu-system-x86 | | 5900 | vmhost | qemu-system-x86 |
| 6379 | | redis | | 6379 | | redis |
| 6667 | | bitlbee | | 6667 | | bitlbee |
| 8008 | matrix-synapse | client, federation |
| 8009 | matrix-synapse | prometheus metrics |
| 8010 | | matrix-media-repo | | 8010 | | matrix-media-repo |
| 8020 | | mautrix-whatsapp | | 8020 | | mautrix-whatsapp |
| 8080 | | miniflux | | 8080 | | miniflux |
| 8093 | travelynx | Travelynx Web |
| 8184 | | matrix-dimension | | 8184 | | matrix-dimension |
| 9000 | jenkins-ci | Jenkins CI |
| 11332-11334 | | rspamd | | 11332-11334 | | rspamd |
| 20000 | mx-puppet-discord | Bridge | | 20000 | mx-puppet-discord | Bridge |
| 21000 | mautrix-telegram | Bridge | | 20010 | mautrix-telegram | Bridge |
| 20080 | matrix-synapse | client, federation |
| 20081 | matrix-synapse | prometheus metrics |
| 22000 | gitea | gitea |
| 22010 | jenkins-ci | Jenkins CI |
| 22020 | travelynx | Travelynx Web |
| 45923 | | grafana | | 45923 | | grafana |
## UDP ## UDP

2
bundles/gitea/files/app.ini
View file

@ -16,7 +16,7 @@ PROTOCOL = http
SSH_DOMAIN = ${domain} SSH_DOMAIN = ${domain}
DOMAIN = ${domain} DOMAIN = ${domain}
HTTP_ADDR = 127.0.0.1 HTTP_ADDR = 127.0.0.1
HTTP_PORT = 3000 HTTP_PORT = 22000
ROOT_URL = https://${domain}/ ROOT_URL = https://${domain}/
DISABLE_SSH = false DISABLE_SSH = false
SSH_PORT = 22 SSH_PORT = 22

2
bundles/gitea/metadata.py
View file

@ -42,7 +42,7 @@ def nginx(metadata):
'vhosts': { 'vhosts': {
metadata.get('gitea/domain'): { metadata.get('gitea/domain'): {
'proxy': { 'proxy': {
'/': 'http://127.0.0.1:3000', '/': 'http://127.0.0.1:22000',
}, },
}, },
}, },

2
bundles/jenkins-ci/files/jenkins
View file

@ -13,7 +13,7 @@ JENKINS_ENABLE_ACCESS_LOG="no"
JENKINS_WAR=/usr/share/$NAME/$NAME.war JENKINS_WAR=/usr/share/$NAME/$NAME.war
RUN_STANDALONE=true RUN_STANDALONE=true
HTTP_PORT=9000 HTTP_PORT=22010
PREFIX=/ PREFIX=/
MAXOPENFILES=8192 MAXOPENFILES=8192

4
bundles/matrix-synapse/files/homeserver.yaml
View file

@ -17,7 +17,7 @@ federation_ip_range_blacklist:
- 'fc00::/7' - 'fc00::/7'
listeners: listeners:
- port: 8009 - port: 20081
tls: false tls: false
bind_addresses: ['::1'] bind_addresses: ['::1']
type: http type: http
@ -27,7 +27,7 @@ listeners:
- names: [metrics] - names: [metrics]
compress: false compress: false
- port: 8008 - port: 20080
tls: false tls: false
bind_addresses: ['::1'] bind_addresses: ['::1']
type: http type: http

4
bundles/mautrix-telegram/files/config.yaml
View file

@ -4,11 +4,11 @@ homeserver:
verify_ssl: true verify_ssl: true
appservice: appservice:
address: http://${node.metadata['mautrix-telegram'].get('listen-addr', '127.0.0.1')}:${node.metadata['mautrix-telegram'].get('port', 21000)} address: http://${node.metadata['mautrix-telegram'].get('listen-addr', '127.0.0.1')}:${node.metadata['mautrix-telegram'].get('port', 20010)}
tls_cert: false tls_cert: false
tls_key: false tls_key: false
hostname: ${node.metadata['mautrix-telegram'].get('listen-addr', '127.0.0.1')} hostname: ${node.metadata['mautrix-telegram'].get('listen-addr', '127.0.0.1')}
port: ${node.metadata['mautrix-telegram'].get('port', 21000)} port: ${node.metadata['mautrix-telegram'].get('port', 20010)}
max_body_size: ${node.metadata['mautrix-telegram'].get('max-body-size', 1)} max_body_size: ${node.metadata['mautrix-telegram'].get('max-body-size', 1)}
database: postgres://${node.metadata['mautrix-telegram']['database']['user']}:${node.metadata['mautrix-telegram']['database']['password']}@${node.metadata['mautrix-telegram']['database'].get('host', 'localhost')}/${node.metadata['mautrix-telegram']['database']['database']} database: postgres://${node.metadata['mautrix-telegram']['database']['user']}:${node.metadata['mautrix-telegram']['database']['password']}@${node.metadata['mautrix-telegram']['database'].get('host', 'localhost')}/${node.metadata['mautrix-telegram']['database']['database']}
public: public:

2
bundles/mautrix-telegram/files/registration.yaml
View file

@ -10,6 +10,6 @@ namespaces:
aliases: aliases:
- exclusive: true - exclusive: true
regex: '#telegram_.+:${node.metadata['mautrix-telegram']['homeserver']['domain']}' regex: '#telegram_.+:${node.metadata['mautrix-telegram']['homeserver']['domain']}'
url: http://${node.metadata['mautrix-telegram'].get('listen-addr', '127.0.0.1')}:${node.metadata['mautrix-telegram'].get('port', 21000)} url: http://${node.metadata['mautrix-telegram'].get('listen-addr', '127.0.0.1')}:${node.metadata['mautrix-telegram'].get('port', 20010)}
sender_localpart: ${node.metadata['mautrix-telegram']['sender_localpart']} sender_localpart: ${node.metadata['mautrix-telegram']['sender_localpart']}
rate_limited: false rate_limited: false

2
bundles/travelynx/files/travelynx.conf
View file

@ -27,7 +27,7 @@
hypnotoad => { hypnotoad => {
accepts => 100, accepts => 100,
clients => 10, clients => 10,
listen => [ 'http://127.0.0.1:8093' ], listen => [ 'http://127.0.0.1:22020' ],
pid_file => '/var/cache/travelynx/travelynx.pid', pid_file => '/var/cache/travelynx/travelynx.pid',
workers => ${workers}, workers => ${workers},
spare => ${spare_workers}, spare => ${spare_workers},

2
data/nginx/files/extras/htz.ex42-1048908/matrix.franzi.business
View file

@ -7,7 +7,7 @@
} }
location /_matrix { location /_matrix {
proxy_pass http://[::1]:8008; proxy_pass http://[::1]:20080;
proxy_set_header X-Forwarded-For $remote_addr; proxy_set_header X-Forwarded-For $remote_addr;
} }

4
nodes/htz/ex42-1048908.py
View file

@ -167,7 +167,7 @@ nodes['htz.ex42-1048908'] = {
}, },
'jenkins.kunsmann.eu': { 'jenkins.kunsmann.eu': {
'proxy': { 'proxy': {
'/': 'http://localhost:9000/', '/': 'http://localhost:22010/',
}, },
}, },
'kunbox.net': {}, 'kunbox.net': {},
@ -200,7 +200,7 @@ nodes['htz.ex42-1048908'] = {
}, },
'travelynx.franzi.business': { 'travelynx.franzi.business': {
'proxy': { 'proxy': {
'/': 'http://127.0.0.1:8093', '/': 'http://127.0.0.1:22020',
}, },
'extras': True, 'extras': True,
}, },