This repository deploys a Nebula Lighthouse. On the first run, it automatically generates all necessary certificates and keys.
- Create a new Service/Project in Coolify.
- Select "From GitHub" and point it to this repository.
- Ensure the "Build Pack" is set to Docker Compose or Dockerfile.
- Important: Coolify must allow
cap_add: NET_ADMIN. Usually standard Docker deployments allow this, but if it fails, check the container capabilities settings. - Deploy.
Once deployed, the entrypoint.sh script will check if keys exist. If not, it generates them and prints them to the container logs.
- Go to your deployment logs in Coolify.
- Scroll to the start of the log.
- You will see sections like
--- LAPTOP CERT ---,--- LAPTOP KEY ---, etc. - Copy these contents to files on your respective devices.
File: config.yaml
pki:
ca: /path/to/ca.crt
cert: /path/to/laptop.crt # or home.crt
key: /path/to/laptop.key # or home.key
static_host_map:
"192.168.100.1": ["nebula.biocentra.eu:4242"]
lighthouse:
am_lighthouse: false
hosts:
- "192.168.100.1"
listen:
host: 0.0.0.0
port: 0 # 0 means random port for clients
punchy:
punch: true
tun:
disabled: false
dev: nebula1
firewall:
outbound:
- port: any
proto: any
host: any
inbound:
- port: any
proto: any
host: any