-
-
Save fusion44/973f6e7dfa4ee8fb43f0166c44ba16c4 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1: https://blog.hypriot.com/ | |
| 2: https://bitcoin.org/de/download | |
| 3: https://github.com/fusion44/docker-bitcoind-rpi | |
| 4: https://github.com/lightningnetwork/lnd | |
| 5: https://github.com/fusion44/docker-lnd-pi |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| This is how I start the containers: | |
| BTC Docker: https://github.com/fusion44/docker-bitcoind-rpi | |
| docker run --name bitcoind --restart=unless-stopped -d 'BTC_RUN_ARGS=””' --volume /home/pirate/bitcoin_data/.bitcoin:/bitcoin -p 8332:8332 --publish 8333:8333 fusion44/bitcoind-rpi:0.1 | |
| LND Docker: https://github.com/fusion44/docker-lnd-pi | |
| docker build -t 'fusion44/lnd-rpi:0.1' /home/pirate/dev/docker-lnd/ | |
| docker run --name lnd -d --env 'BITCOIND_RPCUSER=xxxx' --env 'BITCOIND_RPCPASSWORD=xxxx' --env 'LND_ALIAS=xxxx' --env 'LND_COLOR=#FFFFFF' --volume /home/pirate/lnd_data/.lnd:/lnd -p 8080:8080 -p 9735:9735 -p 10009:10009 fusion44/lnd-rpi:0.1 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES | |
| b15f84c2bf39 fusion44/lnd-rpi:0.1 "/usr/local/bin/do..." 23 hours ago Up 23 hours 0.0.0.0:8080->8080/tcp, 0.0.0.0:9735->9735/tcp, 0.0.0.0:10009->10009/tcp lnd | |
| 3a8c522e55f8 fusion44/bitcoind-rpi:0.1 "/usr/local/bin/do..." 6 days ago Up 23 hours 0.0.0.0:8332-8333->8332-8333/tcp bitcoind |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [fusion44@laptop-antergos ~]$ nmap -p 8000-19000 192.168.1.235 | |
| Starting Nmap 7.70 ( https://nmap.org ) at 2018-06-02 13:06 CEST | |
| Nmap scan report for black-pearl (192.168.1.235) | |
| Host is up (0.014s latency). | |
| Not shown: 2999 closed ports | |
| PORT STATE SERVICE | |
| 8332/tcp open unknown | |
| 8333/tcp open bitcoin | |
| # port 8080, 9735 and 10009 should be reachable here | |
| Nmap done: 1 IP address (1 host up) scanned in 0.49 seconds |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 2018-06-03 13:10:40.055 [INF] RPCS: password RPC server listening on 127.0.0.1:10009 | |
| 2018-06-03 13:10:40.142 [INF] RPCS: password gRPC proxy started at 127.0.0.1:8080 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ sudo netstat -tulpn | |
| Active Internet connections (only servers) | |
| Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name | |
| tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 599/sshd | |
| tcp6 0 0 :::22 :::* LISTEN 599/sshd | |
| tcp6 0 0 :::10009 :::* LISTEN 15245/docker-proxy | |
| tcp6 0 0 :::9735 :::* LISTEN 15258/docker-proxy | |
| tcp6 0 0 :::8332 :::* LISTEN 8010/docker-proxy | |
| tcp6 0 0 :::8333 :::* LISTEN 7997/docker-proxy | |
| tcp6 0 0 :::8080 :::* LISTEN 15269/docker-proxy | |
| udp 0 0 0.0.0.0:48551 0.0.0.0:* 351/avahi-daemon: r | |
| udp 0 0 0.0.0.0:63923 0.0.0.0:* 480/dhclient | |
| udp 0 0 0.0.0.0:68 0.0.0.0:* 480/dhclient | |
| udp 0 0 0.0.0.0:32888 0.0.0.0:* 275/systemd-timesyn | |
| udp 0 0 172.17.0.1:123 0.0.0.0:* 364/ntpd | |
| udp 0 0 192.168.1.235:123 0.0.0.0:* 364/ntpd | |
| udp 0 0 127.0.0.1:123 0.0.0.0:* 364/ntpd | |
| udp 0 0 0.0.0.0:123 0.0.0.0:* 364/ntpd | |
| udp 0 0 0.0.0.0:5353 0.0.0.0:* 351/avahi-daemon: r | |
| udp6 0 0 fe80::28e8:3eff:fe4:123 :::* 364/ntpd | |
| udp6 0 0 fe80::fc98:3eff:fea:123 :::* 364/ntpd | |
| udp6 0 0 fe80::42:20ff:fe9b::123 :::* 364/ntpd | |
| udp6 0 0 fe80::ba27:ebff:fe6:123 :::* 364/ntpd | |
| udp6 0 0 ::1:123 :::* 364/ntpd | |
| udp6 0 0 :::123 :::* 364/ntpd | |
| udp6 0 0 :::36502 :::* 351/avahi-daemon: r | |
| udp6 0 0 :::5353 :::* 351/avahi-daemon: r | |
| udp6 0 0 :::42838 :::* 480/dhclient |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ sudo iptables -S | |
| -P INPUT ACCEPT | |
| -P FORWARD DROP | |
| -P OUTPUT ACCEPT | |
| -N DOCKER | |
| -N DOCKER-ISOLATION | |
| -N DOCKER-USER | |
| -A FORWARD -j DOCKER-USER | |
| -A FORWARD -j DOCKER-ISOLATION | |
| -A FORWARD -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT | |
| -A FORWARD -o docker0 -j DOCKER | |
| -A FORWARD -i docker0 ! -o docker0 -j ACCEPT | |
| -A FORWARD -i docker0 -o docker0 -j ACCEPT | |
| -A DOCKER -d 172.17.0.2/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 8333 -j ACCEPT | |
| -A DOCKER -d 172.17.0.2/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 8332 -j ACCEPT | |
| -A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 10009 -j ACCEPT | |
| -A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 9735 -j ACCEPT | |
| -A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 8080 -j ACCEPT | |
| -A DOCKER-ISOLATION -j RETURN | |
| -A DOCKER-USER -j RETURN |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment