linux软件备份

主要用到的软件

frpc adguardhome aria2 transmission qbittorrent smb alist tyyd mihomo zerotier pmail hivision_idphotosn k8m

主要目录 /opt

数据目录 /mnt

默认在 /opt 目录下执行

frpc

docker run --restart=always --network host -d -v ./frp/frpc.toml:/etc/frp/frpc.toml --name frpc snowdreamtech/frpc

frpc.toml 信息

serverAddr = "xxx.com"
serverPort = 10000 
auth.token = "password"  

[[proxies]]
name = "ssh-22"
type = "tcp"
localIP = "127.0.0.1"
localPort = 22
remotePort = 11022

[[proxies]]
name = "web-5244"
type = "tcp"
localIP = "127.0.0.1"
localPort = 5244
remotePort = 25244

[[proxies]]
name = "web-ssh"
type = "http"
localPort = 7681
subdomain = "webssh"

[[proxies]]
name = "grafana-3000"
type = "http"
localPort = 3000
customDomains = ["xxx.com"]

有公网IP的机器搭建

frps.toml

imwl@tj:/opt/frp$ cat frps.toml
bindPort = 80
subdomainHost = "xxx.com"
auth.method = "token"
auth.token = "frpPass123"
vhostHTTPPort = 80
vhostHTTPSPort = 443

webServer.port = 8080
webServer.addr = "0.0.0.0"
webServer.user = "itswl"
webServer.password = "frpPass123"

aria2

docker run -d \
    --name aria2-pro \
    --restart always \
    --log-opt max-size=1m \
    -e PUID=$UID \
    -e PGID=$GID \
    -e UMASK_SET=022 \
    -e RPC_SECRET=password \
    -e RPC_PORT=6800 \
    -e LISTEN_PORT=6888 \
    --net host \
    -v ./aria2:/config \
    -v /mnt/aria2-downloads:/downloads \
    p3terx/aria2-pro

网页界面

docker run -d \
    --name ariang \
    --log-opt max-size=1m \
    --restart unless-stopped \
    -p 6880:6880 \
    p3terx/ariang

k8m

docker-compose.yaml

services:
  k8m:
    image: registry.cn-hangzhou.aliyuncs.com/minik8m/k8m:0.0.61
    container_name: k8m
    restart: always
    ports:
      - "3618:3618"
    environment:
      PORT: "3618"
      KUBECONFIG: "/root/.kube/config"
      OPENAI_API_KEY: ""  # 请填写你的 OpenAI API Key
      OPENAI_API_URL: ""  # 请填写你的 OpenAI API URL
      OPENAI_MODEL: ""  # 请填写你的 OpenAI model
      LOGIN_TYPE: "password"
      ADMIN_USERNAME: "admin"
      ADMIN_PASSWORD: "123456"
      DEBUG: "false"
      LOG_V: "2"
      JWT_TOKEN_SECRET: "your-secret-key"
      KUBECTL_SHELL_IMAGE: "bitnami/kubectl:latest"
      NODE_SHELL_IMAGE: "alpine:latest"
      SQLITE_PATH: "/app/data/k8m.db"
      IN_CLUSTER: "false"
    volumes:
      - ./data:/app/data  # 挂载 SQLite 数据库
      - ./logs:/app/logs 
      - ~/.kube/config:/root/.kube/config  # 挂载 Kubeconfig 文件

transmission

docker run \
    -d \
    --name=transmission \
    -e USERNAME=admin \
    -e PASSWORD=admin \
    -e PUID=1000 \
    -e PGID=1000 \
    -e TRANSMISSION_WEB_HOME=/transmission-web-control/web \
    -p 9091:9091 \
    -p 51413:51413 \
    -p 51413:51413/udp \
    -v ./transmission/transmission-web-control:/transmission-web-control \
    -v ./transmission/config:/config \
    -v /mnt/transmission/downloads:/downloads \
    -v ./transmission/watch:/watch \
    --restart unless-stopped \
    linuxserver/transmission

ui 界面

解压 UI界面 https://github.com/transmission-web-control/transmission-web-control/releases/download/v1.6.33/dist.zip  到 /transmission-web-control/web

qbittorrent

docker run -d \
 --name=qbittorrent \
 -e PUID=1000 \
 -e PGID=1000 \
 -e TZ=Asia/Shanghai \
 -e WEBUI_PORT=8180 \
 -p 8180:8180 \
 -p 6881:6881 \
 -p 6881:6881/udp \
 -v ./qbit/config:/config \
 -v /mnt/qbit/downloads:/downloads \
 --restart unless-stopped \
 linuxserver/qbittorrent

docker logs -f qbittorrent 查看admin密码

alist

docker run -d --restart=always -v ./alist:/opt/alist/data -v /mnt:/mnt -p \
 127.0.0.1:5244:5244 -e PUID=0 -e PGID=0 -e UMASK=022 --name="alist" xhofe/alist:latest
 
 docker exec -it alist ./alist admin set password

nginx.conf

server {
    listen       80;
    listen  [::]:80;
    server_name  localhost;

    ## 新增部分
    location  ^~ /alist/ {
       proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
       proxy_set_header X-Forwarded-Proto $scheme;
       proxy_set_header Host $http_host;
       proxy_set_header X-Real-IP $remote_addr;
       proxy_set_header Range $http_range;
       proxy_set_header If-Range $http_if_range;
       proxy_redirect off;
       proxy_pass http://127.0.0.1:5244;
       # the max size of file to upload
       client_max_body_size 20000m;
    }
}

flatnotes

docker run -d \
   --restart unless-stopped \
   --name flatnotes \
   -p "127.0.0.1:28880:8080" \
   -v "/opt/flatnotes/data:/data" \
   -e "FLATNOTES_AUTH_TYPE=password" \
   -e "FLATNOTES_USERNAME=admin" \
   -e "FLATNOTES_PASSWORD=Wl19950707" \
   -e "FLATNOTES_SECRET_KEY=Wl19950707" \
   -e "PORT=8080" \
  dullage/flatnotes:latest

新增文件 flatnotes.conf

server {
      listen       80;
      listen [::]:80;
      server_name  flatnotes.kibana.eu.org;  # 用到的域名

      #charset koi8-r;

      #access_log  logs/host.access.log  main;

      location / {
      proxy_pass http://localhost:28880/;
      proxy_set_header Host $host;
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header X-Forwarded-Proto $scheme;

      }
}

docker kvm 安装 windows

需要 cpu 支持 kvm egrep -c '(vmx|svm)' /proc/cpuinfo

输出值大于 0

docker run -it -d  --name win11 \
-p 8006:8006 \
-p 3390:3389/tcp \
-p 3390:3389/udp \
-v /opt/windows/win11:/storage \
--device=/dev/kvm --cap-add NET_ADMIN --stop-timeout 120 -e VERSION="win11" -e LANGUAGE="Chinese" \
-e RAM_SIZE=8G \
-e CPU_CORES=8 \
-e DISK_SIZE=100G \
-e USERNAME="bill" \
-e PASSWORD="gates" \
dockurr/windows

macos (感觉性能不太行)

docker run -itd --name sonoma  -e  VERSION="sonoma" \
-p 8007:8006 \
-p 5900:5900/tcp \
-p 5900:5900/udp \
-v /opt/macos/sonoma:/storage \
-e RAM_SIZE=8G \
-e CPU_CORES=8 \
-e DISK_SIZE="256G" \
--device=/dev/kvm \
--cap-add NET_ADMIN --stop-timeout 120 dockurr/macos

filebrowser

主要用于文件上传下载分享

# 拷贝文件
cd ./filebrowser
docker run --rm -itd -p 80:8080  --name filebrowser-temp -v ./:/srv filebrowser/filebrowser
docker cp filebrowser-temp:/database.db ./database.db
docker cp filebrowser-temp:/.filebrowser.json ./.filebrowser.json
 
docker run -itd -v ./data:/srv  -v ./.database.db:/database.db -v ./.filebrowser.json:/.filebrowser.json -u 0:0 --net host  --name filebrowser  filebrowser/filebrowser

spug

docker-compose.yml

version: "3.3"
services:
  db:
    image: mariadb:10.8.2
    container_name: spug-db
    restart: always
    command: --port 3306 --character-set-server=utf8mb4 --collation-server=utf8mb4_unicode_ci
    volumes:
      - ./spug/mysql:/var/lib/mysql
    environment:
      - MYSQL_DATABASE=spug
      - MYSQL_USER=spug
      - MYSQL_PASSWORD=spug.cc
      - MYSQL_ROOT_PASSWORD=spug.cc
  spug:
    image: openspug/spug-service
    container_name: spug
    privileged: true
    restart: always
    volumes:
      - ./spug/service:/data/spug
      - ./spug/repos:/data/repos
    ports:
      - "82:80"
    environment:
      - MYSQL_DATABASE=spug
      - MYSQL_USER=spug
      - MYSQL_PASSWORD=spug.cc
      - MYSQL_HOST=db
      - MYSQL_PORT=3306
    depends_on:
      - db

nextcloud + onlyoffice

使用 docker-compose

services:
  db:
    image: mariadb:10.6
    restart: always
    command: --transaction-isolation=READ-COMMITTED --log-bin=binlog --binlog-format=ROW
    volumes:
      - ./db:/var/lib/mysql
    environment:
      - MYSQL_ROOT_PASSWORD=Wl19950707
      - MYSQL_PASSWORD=Wl19950707
      - MYSQL_DATABASE=nextcloud
      - MYSQL_USER=nextcloud

  redis:
    image: redis:alpine
    restart: always
    volumes:
      - ./redis:/data

  app:
    image: nextcloud
    restart: always
    ports:
      - 8088:80
    links:
      - db
      - redis
    volumes:
      - ./app:/var/www/html
    environment:
      - MYSQL_PASSWORD=Wl19950707
      - MYSQL_DATABASE=nextcloud
      - MYSQL_USER=nextcloud
      - MYSQL_HOST=db
      - REDIS_HOST=redis

  documentserver:
    image: 186184848/documentserver
    restart: always
    ports:
      - 88:80
    volumes:
      - ./documentServer/logs:/var/log/onlyoffice
      - ./documentServer/data:/var/www/onlyoffice/Data
    environment:
      - JWT_ENABLED=false

需要加载一下 字体

mihomo

docker run --name mihomo -d \
    -p 7890:7890 \
    -p 7891:7891 \
    -p 7892:7892 \
    -p 9090:9090 \
    -v ./mihomo/config:/root/.config/mihomo \
    metacubex/mihomo

推荐使用 system 二进制

mihomo.service

[Unit]
Description=mihomo Daemon, Another Clash Kernel.
After=network.target NetworkManager.service systemd-networkd.service iwd.service

[Service]
Type=simple
LimitNPROC=500
LimitNOFILE=1000000
CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_SYS_TIME CAP_SYS_PTRACE CAP_DAC_READ_SEARCH
AmbientCapabilities=CAP_NET_ADMIN CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_SYS_TIME CAP_SYS_PTRACE CAP_DAC_READ_SEARCH
Restart=always
ExecStartPre=/usr/bin/sleep 1s
ExecStart=/usr/local/bin/mihomo -d /opt/mihomo
ExecReload=/bin/kill -HUP $MAINPID

[Install]

/etc/systemd/resolved.conf 修改 DNSStubListener=no

systemctl restart systemd-resolved

添加 iptables 规则,tun 模式

iptables -P FORWARD ACCEPT
# iptables -t nat -I PREROUTING -p udp --dport 53 -j REDIRECT --to 1053

添加 ui

git clone https://github.com/metacubex/metacubexd.git -b gh-pages /opt/mihomo/ui

config.yaml 新增

external-ui: '/ui'

it-tools

docker run -d --name it-tools --restart always -p 18080:80 corentinth/it-tools:latest

samba

apt -y install samba

共享目录配置 /etc/samba/smb.conf

[myshare]
   comment = Public Stuff
   path = /mnt
   valid users = root, imwl
   create mask = 0777
   directory mask = 0777
   available = yes
   browseable = yes
   public = yes
   writable = yes
   printable = no
   write list = +staff

创建用户

smbpasswd -a root
smbpasswd -a imwl

tyyd

建议使用 二进制安装

ttyd.service

[Unit]
Description=ttyd
After=network.target
 
[Service]
ExecStart=/usr/sbin/ttyd -W login
 
[Install]
WantedBy=multi-user.target

zerotier

docker run --name myzerotier-client -d --restart=always --cap-add=SYS_ADMIN --cap-add NET_ADMIN --net=host --device /dev/net/tun zerotier/zerotier:latest zerotiernetid

推荐使用脚本安装

curl -s 'https://raw.githubusercontent.com/zerotier/ZeroTierOne/main/doc/contact%40zerotier.com.gpg' | gpg --import && \  
if z=$(curl -s 'https://install.zerotier.com/' | gpg); then echo "$z" | sudo bash; fi

代理局域网设备

sysctl -w net.ipv4.ip_forward=1

PHY_IFACE=eth0; 
ZT_IFACE=zt7nnig26

执行 iptables 规则

sudo iptables -t nat -A POSTROUTING -o $PHY_IFACE -j MASQUERADE
sudo iptables -A FORWARD -i $PHY_IFACE -o $ZT_IFACE -m state --state RELATED,ESTABLISHED -j ACCEPT
sudo iptables -A FORWARD -i $ZT_IFACE -o $PHY_IFACE -j ACCEPT

常用开发服务

数据库，监控服务

docker run -d \
  --name=postgres \
  -e POSTGRES_PASSWORD=password \
  -e POSTGRES_USER=postgres \
  -e POSTGRES_DB=postgres \
  -v /opt/postgres/data:/var/lib/postgresql/data \
  -p 5432:5432 \
  postgres
  
docker run -d \
  --name=mysql \
  -e MYSQL_ROOT_PASSWORD=yourpassword \
  -e MYSQL_DATABASE=yourdatabase \
  -e MYSQL_USER=yourusername \
  -e MYSQL_PASSWORD=yourpassword \
  -v /opt/mysql/data:/var/lib/mysql \
  -p 3306:3306 \
  mysql
  
  

docker run -d \
  --name=redis \
  -v /opt/redis/data:/data \
  -p 6379:6379 \
  redis
  
docker run -d \
  --name=prometheus \
  -v /opt/prometheus/config/prometheus.yml:/etc/prometheus/prometheus.yml \
  -v /opt/prometheus/data:/prometheus \
  -p 9090:9090 \
  prom/prometheus
  

# -v /opt/prometheus/grafana/grafana.ini:/etc/grafana/grafana.ini \
docker run -p 3000:3000 --name grafana \
-v /opt/prometheus/grafana/data:/var/lib/grafana \
-e "GF_SECURITY_ADMIN_PASSWORD=grafana123" \
-itd grafana/grafana


docker run -d --name node-exporter --restart=always -p 9100:9100 -v "/proc:/host/proc:ro" -v "/sys:/host/sys:ro" -v "/:/rootfs:ro" prom/node-exporter

adguardhome

双 adguardhome

docker run -d   --name adguardhome1   -v ./adguardhome/work1:/opt/adguardhome/work   -v ./adguardhome/conf1:/opt/adguardhome/conf   --net=host   --restart=always   adguard/adguardhome
docker run -d   --name adguardhome2   -v ./adguardhome/work2:/opt/adguardhome/work   -v ./adguardhome/conf2:/opt/adguardhome/conf   --net=host   --restart=always   adguard/adguardhome

conf1/AdGuardHome.yaml

http:
  pprof:
    port: 6060
    enabled: false
  address: 0.0.0.0:3001
  session_ttl: 720h
users:
  - name: admin
    password: $2a$10$ZLthKbjuIi5RS6dAPy7Ome3JOL8UynIlj53oIjCDV/TIieYX0Liqq
auth_attempts: 5
block_auth_min: 15
http_proxy: ""
language: ""
theme: auto
dns:
  bind_hosts:
    - 0.0.0.0
  port: 531
  anonymize_client_ip: false
  ratelimit: 0
  ratelimit_subnet_len_ipv4: 24
  ratelimit_subnet_len_ipv6: 56
  ratelimit_whitelist: []
  refuse_any: true
  upstream_dns:
    - https://dns.alidns.com/dns-query
    - https://doh.pub/dns-query
    - tls://dot.360.cn:853
    - https://doh.360.cn/dns-query
    - https://223.5.5.5/dns-query
    - https://223.6.6.6/dns-query
  upstream_dns_file: ""
  bootstrap_dns:
    - 114.114.114.114
    - 223.5.5.5
  fallback_dns: []
  upstream_mode: parallel
  fastest_timeout: 1s
  allowed_clients: []
  disallowed_clients: []
  blocked_hosts:
    - version.bind
    - id.server
    - hostname.bind
  trusted_proxies:
    - 127.0.0.0/8
    - ::1/128
  cache_size: 4194304
  cache_ttl_min: 0
  cache_ttl_max: 0
  cache_optimistic: false
  bogus_nxdomain: []
  aaaa_disabled: false
  enable_dnssec: false
  edns_client_subnet:
    custom_ip: ""
    enabled: false
    use_custom: false
  max_goroutines: 300
  handle_ddr: true
  ipset: []
  ipset_file: ""
  bootstrap_prefer_ipv6: false
  upstream_timeout: 10s
  private_networks: []
  use_private_ptr_resolvers: true
  local_ptr_upstreams: []
  use_dns64: false
  dns64_prefixes: []
  serve_http3: false
  use_http3_upstreams: false
  serve_plain_dns: true
  hostsfile_enabled: true
tls:
  enabled: false
  server_name: ""
  force_https: false
  port_https: 443
  port_dns_over_tls: 853
  port_dns_over_quic: 853
  port_dnscrypt: 0
  dnscrypt_config_file: ""
  allow_unencrypted_doh: false
  certificate_chain: ""
  private_key: ""
  certificate_path: ""
  private_key_path: ""
  strict_sni_check: false
querylog:
  dir_path: ""
  ignored: []
  interval: 2160h
  size_memory: 1000
  enabled: true
  file_enabled: true
statistics:
  dir_path: ""
  ignored: []
  interval: 24h
  enabled: true
filters:
  - enabled: true
    url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_1.txt
    name: AdGuard DNS filter
    id: 1
  - enabled: true
    url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_37.txt
    name: No Google
    id: 1717654057
  - enabled: true
    url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_21.txt
    name: 'CHN: anti-AD'
    id: 1717654058
  - enabled: true
    url: https://easylist-downloads.adblockplus.org/easylistchina.txt
    name: easylistchina
    id: 1717654059
  - enabled: true
    url: https://raw.githubusercontent.com/jdlingyu/ad-wars/master/hosts
    name: 大圣净化
    id: 1717654061
  - enabled: true
    url: https://raw.githubusercontent.com/googlehosts/hosts/master/hosts-files/hosts
    name: Google Host
    id: 1717654062
  - enabled: true
    url: https://raw.githubusercontent.com/217heidai/adblockfilters/main/rules/adblockdns.txt
    name: adblock
    id: 1717654063
whitelist_filters: []
user_rules: []
dhcp:
  enabled: false
  interface_name: ""
  local_domain_name: lan
  dhcpv4:
    gateway_ip: ""
    subnet_mask: ""
    range_start: ""
    range_end: ""
    lease_duration: 86400
    icmp_timeout_msec: 1000
    options: []
  dhcpv6:
    range_start: ""
    lease_duration: 86400
    ra_slaac_only: false
    ra_allow_slaac: false
filtering:
  blocking_ipv4: ""
  blocking_ipv6: ""
  blocked_services:
    schedule:
      time_zone: UTC
    ids: []
  protection_disabled_until: null
  safe_search:
    enabled: false
    bing: true
    duckduckgo: true
    google: true
    pixabay: true
    yandex: true
    youtube: true
  blocking_mode: default
  parental_block_host: family-block.dns.adguard.com
  safebrowsing_block_host: standard-block.dns.adguard.com
  rewrites: []
  safebrowsing_cache_size: 1048576
  safesearch_cache_size: 1048576
  parental_cache_size: 1048576
  cache_time: 30
  filters_update_interval: 168
  blocked_response_ttl: 10
  filtering_enabled: true
  parental_enabled: false
  safebrowsing_enabled: false
  protection_enabled: true
clients:
  runtime_sources:
    whois: true
    arp: true
    rdns: true
    dhcp: true
    hosts: true
  persistent: []
log:
  file: ""
  max_backups: 0
  max_size: 100
  max_age: 3
  compress: false
  local_time: false
  verbose: false
os:
  group: ""
  user: ""
  rlimit_nofile: 0
schema_version: 28

conf2/AdGuardHome.yaml

cat AdGuardHome.yaml 
http:
  pprof:
    port: 6060
    enabled: false
  address: 0.0.0.0:3002
  session_ttl: 720h
users:
  - name: admin
    password: $2a$10$ZLthKbjuIi5RS6dAPy7Ome3JOL8UynIlj53oIjCDV/TIieYX0Liqq
auth_attempts: 5
block_auth_min: 15
http_proxy: ""
language: ""
theme: auto
dns:
  bind_hosts:
    - 0.0.0.0
  port: 532
  anonymize_client_ip: false
  ratelimit: 20
  ratelimit_subnet_len_ipv4: 24
  ratelimit_subnet_len_ipv6: 56
  ratelimit_whitelist: []
  refuse_any: true
  upstream_dns:
    - https://dns.cloudflare.com/dns-query
    - https://dns.google/dns-query
    - tls://dns.google:853
    - tls://1.1.1.1:853
    - tls://1.1.1.1/dns-query
    - https://1.1.1.1/dns-query
    - tls://dns11.quad9.net
    - https://dns11.quad9.net/dns-query
    - https://jp.tiarap.org/dns-query
    - https://jp.tiar.app/dns-query
    - tls://8.8.8.8/dns-query
    - tls://8.8.4.4/dns-query
  upstream_dns_file: ""
  bootstrap_dns:
    - 1.1.1.1
    - 9.9.9.10
    - 8.8.8.8
  fallback_dns: []
  upstream_mode: parallel
  fastest_timeout: 1s
  allowed_clients: []
  disallowed_clients: []
  blocked_hosts:
    - version.bind
    - id.server
    - hostname.bind
  trusted_proxies:
    - 127.0.0.0/8
    - ::1/128
  cache_size: 10487600
  cache_ttl_min: 60
  cache_ttl_max: 86400
  cache_optimistic: true
  bogus_nxdomain: []
  aaaa_disabled: false
  enable_dnssec: false
  edns_client_subnet:
    custom_ip: ""
    enabled: false
    use_custom: false
  max_goroutines: 300
  handle_ddr: true
  ipset: []
  ipset_file: ""
  bootstrap_prefer_ipv6: false
  upstream_timeout: 10s
  private_networks: []
  use_private_ptr_resolvers: true
  local_ptr_upstreams: []
  use_dns64: false
  dns64_prefixes: []
  serve_http3: false
  use_http3_upstreams: false
  serve_plain_dns: true
  hostsfile_enabled: true
tls:
  enabled: false
  server_name: ""
  force_https: false
  port_https: 443
  port_dns_over_tls: 853
  port_dns_over_quic: 853
  port_dnscrypt: 0
  dnscrypt_config_file: ""
  allow_unencrypted_doh: false
  certificate_chain: ""
  private_key: ""
  certificate_path: ""
  private_key_path: ""
  strict_sni_check: false
querylog:
  dir_path: ""
  ignored: []
  interval: 2160h
  size_memory: 1000
  enabled: true
  file_enabled: true
statistics:
  dir_path: ""
  ignored: []
  interval: 24h
  enabled: true
filters:
  - enabled: true
    url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_1.txt
    name: AdGuard DNS filter
    id: 1
  - enabled: true
    url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_21.txt
    name: 'CHN: anti-AD'
    id: 1717654066
  - enabled: true
    url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_29.txt
    name: 'CHN: AdRules DNS List'
    id: 1717654067
  - enabled: true
    url: https://fastly.jsdelivr.net/gh/huangwb8/bloghelper@latest/others/chndomains_For_Adblock.txt
    name: List 1717654069
    id: 1717654069
whitelist_filters: []
user_rules: []
dhcp:
  enabled: false
  interface_name: ""
  local_domain_name: lan
  dhcpv4:
    gateway_ip: ""
    subnet_mask: ""
    range_start: ""
    range_end: ""
    lease_duration: 86400
    icmp_timeout_msec: 1000
    options: []
  dhcpv6:
    range_start: ""
    lease_duration: 86400
    ra_slaac_only: false
    ra_allow_slaac: false
filtering:
  blocking_ipv4: ""
  blocking_ipv6: ""
  blocked_services:
    schedule:
      time_zone: UTC
    ids: []
  protection_disabled_until: null
  safe_search:
    enabled: false
    bing: true
    duckduckgo: true
    google: true
    pixabay: true
    yandex: true
    youtube: true
  blocking_mode: default
  parental_block_host: family-block.dns.adguard.com
  safebrowsing_block_host: standard-block.dns.adguard.com
  rewrites: []
  safebrowsing_cache_size: 1048576
  safesearch_cache_size: 1048576
  parental_cache_size: 1048576
  cache_time: 30
  filters_update_interval: 24
  blocked_response_ttl: 10
  filtering_enabled: true
  parental_enabled: false
  safebrowsing_enabled: false
  protection_enabled: true
clients:
  runtime_sources:
    whois: true
    arp: true
    rdns: true
    dhcp: true
    hosts: true
  persistent: []
log:
  file: ""
  max_backups: 0
  max_size: 100
  max_age: 3
  compress: false
  local_time: false
  verbose: false
os:
  group: ""
  user: ""
  rlimit_nofile: 0
schema_version: 28