Admincraft LogoAdmincraft

Recent Discussions

Server setup/security

Open in Discord
Unanswered
Wool sower gall maker posted this in #questions
Messages19 messages
Views0 views
Wool sower gall makerOP
Hello, want to allow people to connect to my mcserver on docker in ubuntu on proxmox. Could anyone tell me if these steps are good and if im missing anything

I have the vm on a static ip w these firewall
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow 25565/tcp 
sudo ufw allow ssh
sudo ufw enable -y

Then i port forward on router

For chunky, do I have to login to load the world or can i execute it all from terminal?
Bluetick Coonhound
In proxmox, use security groups to deny access to all local resources
But I do not generally recommend self hosting a public server
@Bluetick Coonhound But I do not generally recommend self hosting a public server
Wool sower gall makerOP
its just for friends is there any things i should change for that
i have a white list on and i will add their names
Also I suggest not using Docker. Use Podman instead, it's interop with Docker and uses the same stuff, but it's rootless for higher security and runs daemonless so it uses less resources. 👍
@Ruddy Ground-Dove UFW doesn't work with Docker due to firewall rules order. I suggest NFTables firstly as it's a newer standard, and make sure you check the order of which you apply rules, it's important.
Wool sower gall makerOP
Podman sounds intersting, how easy is it to setup vs docker with itzg image? What about migrating an existing server from docker to podman?
What are your thoughts on other solutions like linuxgsm, crafty, Pterodactyl?
Ruddy Ground-Dove
Podman is interop with Docker so you can use the same docker-compose.yaml, the same dockerfiles, all of it. The way to migrate is to download Podman and then run a podman compose command.
As for management plane? Personally I would use Komodo with Podman over Ptero.
@Ruddy Ground-Dove As for management plane? Personally I would use Komodo with Podman over Ptero.
Wool sower gall makerOP
I havent used any, are they worth using? First time setting up a server on linux on a server.
Bluetick Coonhound
ptero is a meh for me. Depends on preferences i guess. Ive been running 3 servers in pure cli for the past year. Just started to use ptero a few weeks ago, and the difference is not major for me
once its running, there is not much to configure/change
all things can be automated by crontab
@Wool sower gall maker I havent used any, are they worth using? First time setting up a server on linux on a server.
Ruddy Ground-Dove
Ptero is meh, it's for game server management and it's fine, but Komodo is much more powerful as a Docker frontend.
Really if you can use Docker or Podman you're probably better off handling it with a tool to work with it.
Wool sower gall makerOP
Is it as easy as just installing podman and podman compose? Im running it but run into an error
@Wool sower gall maker Is it as easy as just installing podman and podman compose? Im running it but run into an error
Ruddy Ground-Dove
Either will work, yes. They both work with the same kind of Compose files.
@Ruddy Ground-Dove Either will work, yes. They both work with the same kind of Compose files.
Wool sower gall makerOP
do you recommend running a a server this way? or would using lxc be better? (best for convivence, and/or performance)

use case is 2 big modpack, 1 leaf/purpur server. Will most likely run 1 server at a time, unless its not a problem running 1 modded 1 paper fork on a 5 9500t
Loading...