Upload 5 files

Dockerfile

@@ -0,0 +1,65 @@
+# Use latest Alpine as base image
+FROM alpine:latest
+
+# Maintainer info
+LABEL maintainer="you@example.com"
+
+# Enable Alpine edge community repo for dotnet8 packages
+RUN echo "https://dl-cdn.alpinelinux.org/alpine/edge/community" >> /etc/apk/repositories && \
+    apk update
+
+# Install necessary packages: dotnet8-runtime, aspnetcore8-runtime, supervisor, and nginx
+RUN apk add --no-cache \
+    tar \
+    wget \
+    nginx \
+    tzdata \
+    supervisor \
+    dotnet8-runtime \
+    aspnetcore8-runtime 
+
+# Create a non-root user and group
+RUN addgroup -S app_admin && adduser -S app_user -G app_admin
+
+# Set environment variables
+ENV HOME=/home/app_user \
+    PATH=/home/app_user/.local/bin:$PATH
+
+# Create necessary directories with proper permissions
+RUN mkdir -p /app /app/dns-server /opt/technitium/dns /var/log /var/lib/logs /tmp && \
+    touch /app/supervisord.log /app/supervisord.pid /app/nginx.pid && \
+    chmod 777 /app/supervisord.log /app/supervisord.pid /app/nginx.pid && \
+    chown -R app_user:app_admin /app /var/log /var/lib/logs/  /tmp && \
+    chmod -R 755 /app /tmp && \
+    chmod -R 777 /var/log 
+
+RUN mkdir -p /var/log/nginx /run/nginx  && \
+    chown -R app_user:app_admin /var/lib/nginx /var/log/nginx  
+
+# Copy the application files into the container with proper ownership
+COPY --chown=app_user:app_admin . $HOME/app 
+
+# Copy the Nginx configuration file
+COPY --chown=app_user:app_admin ./nginx.conf /etc/nginx/conf.d/nginx.conf
+COPY --chown=app_user:app_admin ./nginx.conf /etc/nginx/nginx.conf
+
+# Copy the supervisord configuration file
+COPY --chown=app_user:app_admin ./supervisord.conf /etc/supervisord.conf
+
+# Download Technitium DNS Server and extract
+RUN wget https://download.technitium.com/dns/DnsServerPortable.tar.gz -O /tmp/DnsServerPortable.tar.gz && \
+    mkdir -p /app/dns-server && \
+    tar -zxf /tmp/DnsServerPortable.tar.gz -C /app/dns-server && \
+    rm -rf /tmp/DnsServerPortable.tar.gz
+
+# Set working directory for DNS Server
+WORKDIR /app
+
+# Expose the necessary ports
+EXPOSE 7860
+
+# Switch to non-root user
+USER app_user
+
+# Start Supervisor to manage services
+CMD ["/usr/bin/supervisord", "-c", "/etc/supervisord.conf"]

app_startup.sh

@@ -0,0 +1,16 @@
+#!/bin/sh
+set -e
+
+echo "Setting up logs and supervisord..."
+# Create /var/log directory if missing and set permissions
+
+# Make sure DNS server start/stop scripts are executable
+#chmod +x /app/dns-server/start.sh
+
+# List all files inside /app to verify
+echo "Listing files inside /app:"
+ls -la /app
+
+echo "Starting supervisord..."
+/usr/bin/supervisord -c /etc/supervisord.conf -n
+

dns_startup.sh

@@ -0,0 +1,22 @@
+#!/bin/sh
+# Start the Technitium DNS Server
+
+# Log the start of the script
+echo "Starting DNS server..."
+
+# Ensure we are in the correct directory
+cd /app/dns-server
+echo "Changed directory to /app/dns-server
+
+# Log before starting the DNS server
+echo "Starting DnsServer.exe..."
+
+# Start the DNS server
+echo "Listing files inside /app:"
+ls -la /app
+
+./start.sh 
+
+# Log after the server starts (if it gets this far)
+echo "DnsServer.exe has started."
+

nginx.conf

@@ -0,0 +1,74 @@
+worker_processes auto;
+
+error_log  stderr notice;
+pid        /app/nginx.pid;
+
+events {
+    worker_connections 10;
+}
+
+http {
+    server {
+        listen 7860;
+
+        location = / {
+            default_type text/plain;
+            return 200 'hello';
+        }
+
+        # Main App Route (HTTP on port 7860)
+        location = /app {
+            proxy_pass http://127.0.0.1:8000;  # Main app service (replace with your actual backend)
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header Host $host;
+            proxy_set_header X-Forwarded-Proto $scheme;
+            proxy_http_version 1.1;
+            proxy_set_header Upgrade $http_upgrade;
+            proxy_set_header Connection "upgrade";
+        }
+
+        # DNS-over-HTTP Route (PathPrefix /dns-http on port 7860)
+        location /dns-http/ {
+            proxy_pass http://127.0.0.1:5380;  # Replace "dns-server" with actual service name
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header Host $host;
+            proxy_set_header X-Forwarded-Proto $scheme;
+            proxy_http_version 1.1;
+            proxy_set_header Upgrade $http_upgrade;
+            proxy_set_header Connection "upgrade";
+        }
+
+        # DNS-over-HTTPS Route (PathPrefix /dns-https on port 7860)
+        location /dns-https/ {
+            proxy_pass http://127.0.0.1:5381;  # Replace "dns-server" with actual service name
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header Host $host;
+            proxy_set_header X-Forwarded-Proto $scheme;
+            proxy_http_version 1.1;
+            proxy_set_header Upgrade $http_upgrade;
+            proxy_set_header Connection "upgrade";
+        }
+
+        # DNS-over-TLS Route (PathPrefix /dns-tls on port 7860)
+        location /dns-tls/ {
+            proxy_pass http://127.0.0.1:853;  # Replace "dns-server" with actual service name
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header Host $host;
+            proxy_set_header X-Forwarded-Proto $scheme;
+            proxy_http_version 1.1;
+            proxy_set_header Upgrade $http_upgrade;
+            proxy_set_header Connection "upgrade";
+        }
+
+        # Traefik Dashboard Route (PathPrefix /dashboard)
+        location /dashboard/ {
+            proxy_pass http://127.0.0.1:8080;  # Assuming Traefik Dashboard is served locally on port 8080
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header Host $host;
+            proxy_set_header X-Forwarded-Proto $scheme;
+            proxy_http_version 1.1;
+            proxy_set_header Upgrade $http_upgrade;
+            proxy_set_header Connection "upgrade";
+        }
+    }
+}

supervisord.conf

@@ -0,0 +1,28 @@
+[supervisord]
+loglevel=debug
+nodaemon=true
+logfile=/dev/stderr
+pidfile=/app/supervisord.pid
+# Increase file descriptor limit if needed
+rlimit_nofile=65535  
+
+[program:nginx]
+command=nginx -g "daemon off;"
+# autorestart=true
+# Discard stderr logs (won't be saved)
+stderr_logfile=/dev/null  
+# Discard stdout logs (won't be saved)
+stdout_logfile=/dev/null  
+user=app_user
+priority=1
+
+[program:dns]
+command=dotnet /app/dns-server/DnsServerApp.dll
+# autorestart=true
+# Discard stderr logs (won't be saved)
+stderr_logfile=/dev/null
+# Discard stdout logs (won't be saved)  
+stdout_logfile=/dev/null  
+user=app_user
+priority=10
+startretries=3