Skip to content
FarisZR edited this page Sep 22, 2023 · 2 revisions

CPU: 1vCPU

Arch: ARM64/v8/

Ram: 2 GB

Host: Oracle Cloud

Location: Jeddah, KSA

OS: Ubuntu 22.04

Tailscale setup

curl -fsSL https://tailscale.com/install.sh | sh
sudo tailscale up --ssh

Then login from the main Aosus account

Auto updates

Ubuntu Linux

Ubuntu auto updates have been set up to apply upgrades at 9 UTC

https://wiki.debian.org/UnattendedUpgrades

steps to setup upgrades at 21:00 Local(UTC) Server time, so 00:00 GMT+3:

  • sudo systemctl edit apt-daily-upgrade.timer

add this between the comment lines

[Timer]

OnCalendar=

OnCalendar=21:00

RandomizedDelaySec=0
  • sudo systemctl restart apt-daily-upgrade.timer

  • sudo systemctl status apt-daily-upgrade.timer

check when the services are going to be activated

then follow this guide:

https://linuxiac.com/how-to-set-up-automatic-updates-on-debian/

add "Docker:${distro_codename}" and "Tailscale:${distro_codename}" to allowed origins to update docker and Tailscale

Enable IPv6

https://blog.51sec.org/2021/09/enable-ipv6-on-oracle-cloud.html

Enable IPv6 in docker

https://docs.docker.com/config/daemon/ipv6/#use-ipv6-for-the-default-bridge-network/

/etc/docker/daemon.json

{
  "ipv6": true,
  "fixed-cidr-v6": "fd00::/80",
  "experimental": true,
  "ip6tables": true,
  "userns-remap": "ubuntu",
  "default-address-pools": [
    { "base": "172.17.0.0/16", "size": 16 },
    { "base": "172.18.0.0/16", "size": 16 },
    { "base": "172.19.0.0/16", "size": 16 },
    { "base": "172.20.0.0/14", "size": 16 },
    { "base": "172.24.0.0/14", "size": 16 },
    { "base": "172.28.0.0/14", "size": 16 },
    { "base": "192.168.0.0/16", "size": 20 },
    { "base": "fdaf:19a9::/104", "size": 112 }
  ],
  "userland-proxy": false
}

i disabled userland-proxy because native iptables networking should be much faster, without too many issues. https://franckpachot.medium.com/high-cpu-usage-in-docker-proxy-with-chatty-database-application-disable-userland-proxy-415ffa064955 https://github.com/moby/moby/issues/14856

Clone this wiki locally