-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathdocker-compose.yml
More file actions
48 lines (46 loc) · 1.41 KB
/
docker-compose.yml
File metadata and controls
48 lines (46 loc) · 1.41 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
services:
packetview:
build: .
network_mode: host # Access host network interfaces for packet capture
user: "0:0" # Run as root for tcpdump capabilities
environment:
- NODE_ENV=production
- DISABLE_AUTO_CAPTURE=false # Set to true to disable auto packet capture on startup
cap_add:
- NET_ADMIN
- NET_RAW
restart: unless-stopped
healthcheck:
test: ["CMD", "node", "-e", "require('http').get('http://localhost:3001/health', (res) => { process.exit(res.statusCode === 200 ? 0 : 1) })"]
interval: 30s
timeout: 10s
retries: 3
start_period: 40s
# Alternative: Run as non-root with setcap (uncomment to use)
# packetview-nonroot:
# build: .
# network_mode: host
# environment:
# - NODE_ENV=production
# - DISABLE_AUTO_CAPTURE=true
# cap_add:
# - NET_ADMIN
# - NET_RAW
# restart: unless-stopped
# healthcheck:
# test: ["CMD", "node", "-e", "require('http').get('http://localhost:3001/health', (res) => { process.exit(res.statusCode === 200 ? 0 : 1) })"]
# interval: 30s
# timeout: 10s
# retries: 3
# start_period: 40s
# Optional: nginx proxy for production
# nginx:
# image: nginx:alpine
# ports:
# - "80:80"
# - "443:443"
# volumes:
# - ./nginx.conf:/etc/nginx/nginx.conf:ro
# depends_on:
# - packetview
# restart: unless-stopped