This work-around of setting up Pangolin in Host networking_mode is no more required.
Ensure that Pangolin, Gerbil and Traefik containers belong to a docker network with IPv6 support.
That's all is needed for proper Client IP Addresses (X-Forwarded-For) to work properly.
Sample IPv6 Docker Network:
docker network create \
--driver=bridge \
--subnet=172.22.0.0/16 \
--gateway=172.22.0.1 \
--ipv6 \
--subnet=fd00:cafe:babe::/64 \
--gateway=fd00:cafe:babe::1 \
pangolin
Collection of files for Pangolin Stack running in the HOST Docker Network Mode
IMPORTANT:
One must add container names (at least - pangolin & gerbil) to the /etc/hosts file as below
127.0.0.1 localhost pangolin gerbil traefik crowdsec
Caveats:
- You cannot add TCP/UDP Resources but only HTTP/HTTPS/H2C, since it requires exposing the desired TCP/UDP ports thru gerbil container, which we cannot do in HOST networking_mode.
- Available documentation on Gerbil coupled with my very limited expertise renders this stack as NOT READY for Production usage.
Read more at Pangolin Github https://github.com/fosrl/pangolin