Skip to content
This repository has been archived by the owner on Apr 25, 2023. It is now read-only.
/ pound-docker Public archive

Project for Building a Pound Docker Container

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Cub0n/pound-docker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits

Dockerfile

Dockerfile

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

pound.cfg

pound.cfg

 
 

Repository files navigation

pound-docker

Project for Building a Pound Docker Container

Forewords

No, I have no Docker Hub account and I will not provide any Docker image.

What is Pound

Pound is a small reverse proxy.

Building it up with alpine has an image under 10MB (on Arm)

Configuration

Pound can listen on many TCP ports which can be redirected to backend containers/services. More can be found at:

Build

Change to directory where the Dockerfile is located and execute: docker build -t pound:latest. You can choose the tag (-t) on your own. The builded image is automatically added to your local docker image repository.

Run

docker run -d -p 80:80 -p 443:443 -p 4443:4443
--restart=unless-stopped
--name pound
-v /path/to/pound.cfg:/etc/pound.cfg
-v /path/to/pound.pem:/etc/pound/pound.pem
--network dedicated-network
pound:latest

Security

Please secure your docker container everytime! Run it as dockerless container, keep your images actual, reduce complexity.

Some pitfalls

  • Pound has to be configured not in Daemon mode (see pound.cfg DAEMON 0). If it is configured as a deamon the docker container will start, pound is started and then (because it is a background process) docker receives an exit 0, which means the application is down and Docker stops the container. The process has to be a foreground process!
  • Pound can be configured to use a Web Certificate to communicate with HTTPs to the outside world and internally without encryption. The certificate has to be in PEM format and has to included the certificate itself (e.g. domain.crt) and the key file (e.g. domain.key). Concatenate both with cat domain.crt domain.key > domain.pem in linux shell (see also the manpage, section Cert). The final PEM file should have the name of your domain, e.g. domain.example.org then name it as domain.example.org.pem.
  • Using docker's own DNS resolver, pound has to be in it's own network (not the default bridge network) with other services (see https://docs.docker.com/engine/reference/commandline/network_create/)
  • Check the Path to the pound files and the mapping inside pound.cfg

About

Project for Building a Pound Docker Container

Topics

docker dockerfiles docker-image reverseproxy

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages