服务器docker安装DERP,执行以下命令
docker run --restart always \ -p 443:443 -p 3478:3478/udp \ -e DERP_CERT_MODE=manual \ -v /certs:/app/certs \ -e DERP_ADDR=:443 \ -e DERP_DOMAIN=derp.xxxx.com \ -e DERP_VERIFY_CLIENTS=true \ fredliang/derper
SSL域名证书提前放在`/certs`和`/root/app/certs`目录下,格式例如:`derp.xxxx.com.crt`和`derp.xxxx.com.key`
修改Headscale的配置文件,/etc/headscale/config.yaml,把Tailscale内置的derp服务网址注释
derp: urls: # - https://controlplane.tailscale.com/derpmap/defaultpaths:
- /etc/headscale/derp.yaml
regions:
901:
regionid: 901
regioncode: tgz
regionname: Tencent GuangZhou
nodes:
- name: 1
regionid: 901
hostname: derp.xxxx.com
ipv4: 123.123.123.123
stunport: 3478
stunonly: false
derpport: 443
systemctl restart headscale
tailscale netcheck
连接测试
tailscale ping 100.64.0.1
查看所有docker容器
docker ps -s
停止容器
docker stop 容器ID
删除容器
docker rm 容器ID