the original project - jpetazzo/dockvpn and it has its own automatic build on dockerhub.
Connect to VPS via ssh
ssh -l root <ip-address>
Setting up new user
adduser <username>
echo '<username> ALL=(ALL:ALL) ALL' >> /etc/sudoersAdding ssh pubkey to authorized_keys file
su <username>
mkdir $HOME/.ssh
echo <pubkey> >> $HOME/.ssh/authorized_keysChanging default sshd config file and restart service
sudo sed -i 's/PubkeyAuthentication no/PubkeyAuthentication yes/g' /etc/ssh/sshd_config
sudo sed -i 's/PasswordAuthentication yes/PasswordAuthentication no/g' /etc/ssh/sshd_config
sudo sed -i 's/PermitRootLogin yes/PermitRootLogin no/g' /etc/ssh/sshd_config
sudo systemctl restart ssh.serviceTest connection with
ssh -l <username> <ip-address>
Then add current user to docker group for non root access
sudo groupadd docker
sudo usermod -aG docker egor
newgrp dockerexport PIHOLE_PASS=...
docker network create vpn_network --subnet 192.168.1.0/24
# run pihole
docker run \
--network vpn_network --ip 192.168.1.199 \
--dns "127.0.0.1" --dns "8.8.8.8" \
-e TZ="Asia/Yekaterinburg" -e WEBPASSWORD=$PIHOLE_PASS \
-v "etc-pihole:/etc/pihole" -v "etc-dnsmasq:/etc/dnsmasq.d" \
-d \
--name pihole pihole/pihole
# run openvpn
docker run \
--network vpn_network \
-p 1194:1194/udp -p 443:443/tcp \
-e DNS="192.168.1.199" \
-v "openvpn:/etc/openvpn" \
--privileged -d \
--name openvpn hexlify/vpnTo add new client
docker run -v "openvpn:/etc/openvpn" -p 8081:8081 hexlify/vpn serveconfig <clien_name>sudo iptables -A INPUT -p tcp --destination-port 22 -j ACCEPT
sudo iptables -A INPUT -p udp --destination-port 1194 -j ACCEPT
sudo iptables -A INPUT -p tcp --destination-port 443 -j ACCEPT
sudo iptables -I INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
sudo iptables -I INPUT -i lo -j ACCEPT
sudo iptables -A INPUT -p tcp --destination-port 8081 -j ACCEPT
# dropping all other packets
sudo iptables -P INPUT DROP