mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-27 18:18:55 +00:00

Files

Thomas Eizinger 22eac1ad6d ci: add latency to routers (#10352 )

Now that we have a more realistic network setup in our compose file, we
can extend our router containers to apply the latency on the network
path. This means any use of the compose file has a latency by default,
simplifying our CI setup. It also allows us to restart containers
without having to re-apply the latency which is useful during
performance testing.

2025-09-16 20:27:47 +00:00

Dockerfile

ci: create a more realistic network setup (#10301 )

2025-09-10 23:37:16 +00:00

README.md

ci: create a more realistic network setup (#10301 )

2025-09-10 23:37:16 +00:00

router.nft

ci: create a more realistic network setup (#10301 )

2025-09-10 23:37:16 +00:00

router.sh

ci: add latency to routers (#10352 )

2025-09-16 20:27:47 +00:00

README.md

Router

This container acts as a simple router how they are found on the public Internet. By default, no inbound traffic is allowed, except for:

responses of previously outgoing connections
explicit port forwarding

The router uses nftables to enforce these rules.

We also make several assumptions about the docker-compose setup that we are running in:

The network interface between the router and its container must be called internal
The public network interface on the other side must be called internet
IPv4 and IPv6 must be available on both interfaces