mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-27 18:18:55 +00:00

Files

Thomas Eizinger 17ab1a6d04 ci: remove jitter from docker-compose (#10589 )

Jitter causes packets to get re-ordered which makes it really hard to
get predictable performance results. With jitter disabled, we get more
consistent performance numbers.

2025-10-16 13:34:59 +00:00

Dockerfile

ci: create a more realistic network setup (#10301 )

2025-09-10 23:37:16 +00:00

README.md

ci: create a more realistic network setup (#10301 )

2025-09-10 23:37:16 +00:00

router.nft

ci: create a more realistic network setup (#10301 )

2025-09-10 23:37:16 +00:00

router.sh

ci: remove jitter from docker-compose (#10589 )

2025-10-16 13:34:59 +00:00

README.md

Router

This container acts as a simple router how they are found on the public Internet. By default, no inbound traffic is allowed, except for:

responses of previously outgoing connections
explicit port forwarding

The router uses nftables to enforce these rules.

We also make several assumptions about the docker-compose setup that we are running in:

The network interface between the router and its container must be called internal
The public network interface on the other side must be called internet
IPv4 and IPv6 must be available on both interfaces