FROM alpine:3.17
MAINTAINER Team Lixo <lixonet@team.lixo>

RUN apk add tinc iptables tcpdump
RUN sed -i '/^default = default_sect/a legacy = legacy_sect' /etc/ssl/openssl.cnf
RUN sed -i '/^\[default_sect\]/a activate = 1' /etc/ssl/openssl.cnf
RUN echo "[legacy_sect]" >> /etc/ssl/openssl.cnf
RUN echo "activate = 1" >> /etc/ssl/openssl.cnf

EXPOSE 655/tcp 655/udp
VOLUME /etc/tinc

CMD [ "sh", "-c", "/usr/sbin/tincd --net=$NETNAME --no-detach" ]