-
Notifications
You must be signed in to change notification settings - Fork 0
/
install.sh
27 lines (23 loc) · 1.17 KB
/
install.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
#!/bin/sh
set -euo pipefail
export XDG_RUNTIME_DIR="/run/user/$(id -u)"
# dependencies
sudo dnf install -y firewalld podman
sudo loginctl enable-linger "$(id -nu)"
# firewall
#sudo sysctl net.ipv4.ip_unprivileged_port_start=80
sudo systemctl --now enable firewalld
sudo firewall-cmd --permanent \
--add-rich-rule "rule family=ipv4 forward-port port=80 protocol=tcp to-port=8080" \
--add-rich-rule "rule family=ipv6 forward-port port=80 protocol=tcp to-port=8080" \
--add-rich-rule "rule family=ipv4 forward-port port=443 protocol=tcp to-port=8443" \
--add-rich-rule "rule family=ipv6 forward-port port=443 protocol=tcp to-port=8443" \
--add-rich-rule "rule family=ipv4 forward-port port=443 protocol=udp to-port=8443" \
--add-rich-rule "rule family=ipv6 forward-port port=443 protocol=udp to-port=8443"
sudo firewall-cmd --reload
# applications
mkdir -p ~/.config/systemd/user ~/.fetchit
curl -sS \
-o ~/.config/systemd/user/fetchit.service https://raw.githubusercontent.com/containers/fetchit/main/systemd/fetchit-user.service \
-o ~/.fetchit/config.yaml https://raw.githubusercontent.com/escoand/dockerfiles/master/fetchit.yaml
systemctl --user --now enable podman.socket fetchit