Docker secrets

Table of content

🐛 Found a bug in the Wiki?!

Home

Setup

Prerequisites
- 32 bit prerequisites
- Synology prerequisites
Providers
- Custom provider
- AirVPN
- Cyberghost
- ExpressVPN
- FastestVPN
- Hidemyass
- IPVanish
- IVPN
- Mullvad
- NordVPN
- Perfect privacy
- Privado
- Private internet access
- PrivateVPN
- ProtonVPN
- PureVPN
- SlickVPN
- Surfshark
- Torguard
- VPN Secure
- VPN Unlimited
- VyprVPN
- WeVPN
- Windscribe
Connect a container to gluetun
Connect a LAN device to gluetun
Port mapping
Wireguard
Inter-containers networking
Test your setup (optional)
Docker image tags

Advanced setup

FAQ

Contributing

Other pages referenced

Visitors count

💁 Note this is a bit pointless, since gluetun already takes care of unsetting sensitive environment variables after reading them at start.

If you use Docker Compose or Docker Swarm, you can optionally use Docker secret files for all sensitive values such as your Openvpn credentials, instead of using environment variables.

The following secrets can be used:

openvpn_user
openvpn_password
openvpn_clientkey
openvpn_encrypted_key
openvpn_key_passphrase
openvpn_clientcrt
httpproxy_user
httpproxy_password
shadowsocks_password

Note that you can change the secret file path in the container by changing the environment variable in the form <capitalizedSecretName>_SECRETFILE. For example, OPENVPN_PASSWORD_SECRETFILE defaults to /run/secrets/openvpn_password which you can change.