Skip to content

Setup

Minimum machine configuration required

Key Value
CPU cores 2GHz, 1
RAM 1 Gigabyte
Disk space 10 Gigabytes
Disk type HDD
Operating System Ubuntu 20.04

Install Docker

  1. Update the list of available software packages

    sudo apt-get update
    
  2. Install cURL package

    sudo apt-get install --yes curl
    
  3. Get the official Docker installation script

    curl -fsSL get.docker.com -o ${HOME}/get-docker.sh
    
  4. Install Docker

    sudo sh ${HOME}/get-docker.sh
    
  5. Add user to Docker group

    sudo usermod -aG docker $(whoami)
    
  6. Reboot the machine

Enable IPv6 support for Docker (optional)

  1. Open the file /etc/docker/daemon.json with a text editor

  2. Paste the following configuration

    {
        "ipv6": true,
        "fixed-cidr-v6": "2001:db8:1::/64"
    }
    
  3. Save the file

  4. Restart the Docker process

    sudo systemctl restart docker
    
  5. Install iptables-persistent package

    sudo apt-get install --yes iptables-persistent
    
  6. Enable NAT for the private Docker subnet on the host

    rule="POSTROUTING -s 2001:db8:1::/64 ! -o docker0 -j MASQUERADE" && \
    sudo ip6tables -t nat -C ${rule} || \
    sudo ip6tables -t nat -A ${rule} && \
    sudo sh -c "ip6tables-save > /etc/iptables/rules.v6"
    

Preparing the Docker image

Prebuilt

  1. Pull the image

    docker pull ghcr.io/sentinel-official/dvpn-node:latest
    
  2. Tag the image

    docker tag ghcr.io/sentinel-official/dvpn-node:latest sentinel-dvpn-node
    

From source

  1. Install Git package

    sudo apt-get install --yes git
    
  2. Clone the GitHub repository

    git clone https://github.com/sentinel-official/dvpn-node.git \
        ${HOME}/dvpn-node/
    
  3. Checkout to the latest tag

    cd ${HOME}/dvpn-node/ && \
    commit=$(git rev-list --tags --max-count=1) && \
    git checkout $(git describe --tags ${commit})
    
  4. Build the image

    docker build --file Dockerfile \
        --tag sentinel-dvpn-node \
        --force-rm \
        --no-cache \
        --compress .
    

Create a self-signed TLS certificate

  1. Install openssl package

    sudo apt-get install --yes openssl
    
  2. Create a certificate

    openssl req -new \
        -newkey ec \
        -pkeyopt ec_paramgen_curve:prime256v1 \
        -x509 \
        -sha256 \
        -days 365 \
        -nodes \
        -out ${HOME}/tls.crt \
        -keyout ${HOME}/tls.key
    
Back to top