60 lines
1.6 KiB
Bash
Executable file
60 lines
1.6 KiB
Bash
Executable file
#!/bin/env bash
|
|
# Upstream doc: https://adguard-dns.io/kb/adguard-home/getting-started/
|
|
set -euxo pipefail
|
|
|
|
IMAGE="ubuntu/24.04"
|
|
DIST="${IMAGE%%/*}"
|
|
VER="${IMAGE#*/}"
|
|
VER="${VER%/*}"
|
|
VER="${VER//./-}"
|
|
UPSTREAM_VER="0.107.54"
|
|
UPSTREAM_VER_DASH="${UPSTREAM_VER//./-}"
|
|
UPSTREAM_NAME="adguard"
|
|
SERIAL="2benoitjpnet"
|
|
CNAME="$UPSTREAM_NAME-$UPSTREAM_VER_DASH-$SERIAL-$DIST-$VER"
|
|
ALIAS="$UPSTREAM_NAME-$UPSTREAM_VER-$SERIAL"
|
|
|
|
cd "$WORKSPACE"
|
|
incus launch images:$IMAGE "$CNAME" --quiet
|
|
|
|
wait_network "$CNAME"
|
|
|
|
incus exec "$CNAME" -- bash -c '
|
|
apt-get update && apt-get upgrade -y && apt-get install -y --no-install-recommends wget
|
|
|
|
adduser \
|
|
--system \
|
|
--shell /bin/bash \
|
|
--gecos "AdGuard Home DNS Server" \
|
|
--group \
|
|
--disabled-password \
|
|
--home /opt/adguard \
|
|
adguard
|
|
|
|
cd /tmp && \
|
|
wget --quiet https://github.com/AdguardTeam/AdGuardHome/releases/download/v'"$UPSTREAM_VER"'/AdGuardHome_linux_amd64.tar.gz && \
|
|
tar -xzf AdGuardHome_linux_amd64.tar.gz -C /opt/adguard --strip-components=2 && \
|
|
rm AdGuardHome_linux_amd64.tar.gz
|
|
setcap "CAP_NET_BIND_SERVICE=+eip CAP_NET_RAW=+eip" /opt/adguard/AdGuardHome
|
|
|
|
install -d -m 755 -o adguard -g adguard /opt/adguard/{data,config}
|
|
|
|
#https://github.com/AdguardTeam/AdGuardHome/wiki/FAQ#bindinuse
|
|
mkdir -p /etc/systemd/resolved.conf.d
|
|
cat <<EOT> /etc/systemd/resolved.conf.d/adguardhome.conf
|
|
[Resolve]
|
|
DNS=127.0.0.1
|
|
DNSStubListener=no
|
|
EOT
|
|
'
|
|
|
|
incus file push adguard.service "$CNAME"/etc/systemd/system/
|
|
incus exec "$CNAME" -- systemctl enable adguard
|
|
|
|
laminarc run incus_publish \
|
|
CNAME="$CNAME" \
|
|
UPSTREAM_NAME=$UPSTREAM_NAME \
|
|
UPSTREAM_VER=$UPSTREAM_VER \
|
|
IMAGE=$IMAGE \
|
|
SERIAL=$SERIAL \
|
|
ALIAS=$ALIAS
|