From aeab0e7c54e3995312490e7c4476f162b880f625 Mon Sep 17 00:00:00 2001
From: Elizabeth Hunt <me@liz.coffee>
Date: Sun, 23 Mar 2025 21:35:03 -0700
Subject: fix outbound stuff

---
 .../roles/outbound/templates/proxy/data/.gitkeep   |  0
 .../outbound/templates/proxy/docker-compose.yml    | 36 ++++++++++++++++++++++
 2 files changed, 36 insertions(+)
 create mode 100644 playbooks/roles/outbound/templates/proxy/data/.gitkeep
 create mode 100644 playbooks/roles/outbound/templates/proxy/docker-compose.yml

(limited to 'playbooks/roles/outbound/templates/proxy')

diff --git a/playbooks/roles/outbound/templates/proxy/data/.gitkeep b/playbooks/roles/outbound/templates/proxy/data/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/playbooks/roles/outbound/templates/proxy/docker-compose.yml b/playbooks/roles/outbound/templates/proxy/docker-compose.yml
new file mode 100644
index 0000000..3074047
--- /dev/null
+++ b/playbooks/roles/outbound/templates/proxy/docker-compose.yml
@@ -0,0 +1,36 @@
+services:
+  headscale-client:
+    image: tailscale/tailscale:latest
+    environment:
+      - TS_AUTHKEY={{ headscale_user_auth_key }}
+      - TS_EXTRA_ARGS=--login-server=https://{{ headscale_host }} --accept-routes --accept-dns --stateful-filtering=false
+      - TS_STATE_DIR=/var/lib/tailscale
+      - TS_USERSPACE=false
+      - TZ={{ timezone }}
+    hostname: headscale-outbound
+    restart: unless-stopped
+    cap_add:
+      - NET_ADMIN
+      - SYS_ADMIN
+    volumes:
+      - ./data:/var/lib/tailscale
+      - /dev/net/tun:/dev/net/tun
+    networks:
+      - headnet
+  proxy:
+    image: nginx:latest
+    depends_on:
+      - headscale-client
+    networks:
+      - proxy
+      - headnet
+    environment:
+      - VIRTUAL_HOST=*.{{ domain }},{{ domain }}
+      - VIRTUAL_PORT=80
+      - LETSENCRYPT_HOST=*.{{ domain }},{{ domain }}
+
+networks:
+  headnet:
+  proxy:
+    external: true
+
-- 
cgit v1.2.3-70-g09d2