Home Explore Help
Register Sign In
Apq
/
syncthing
mirror of https://github.com/syncthing/syncthing.git
1
0
Fork 0
Files Issues 0 Wiki

No Description

Tree: 65d0ca8aa9
Branches Tags
syncthing
André Colomb 65d0ca8aa9 fix(config): respect GUI address override in fresh default config (fixes #9783) (#9675) 11 months ago
.github 23fc22ebc5 chore: add more advanced policy configuration (#9726) 1 year ago
assets 9cc49aea77 assets, gui: Losslessly compress all JPG, PNG, and PDF images (#6265) 5 years ago
cmd e82ed6e3d3 style: gofumpt all the things (#9829) 11 months ago
etc 2e313716e5 etc: Remove restart on suspend systemd service (ref #8448) (#9611) 1 year ago
gui 4b815fc086 chore(gui, man, authors): update docs, translations, and contributors 11 months ago
lib 65d0ca8aa9 fix(config): respect GUI address override in fresh default config (fixes #9783) (#9675) 11 months ago
man 3726b7d112 chore(gui, man, authors): update docs, translations, and contributors 1 year ago
meta 0b95c5fa76 fix(meta): return read error in forbidden_words_test (#9706) 1 year ago
next-gen-gui 2abfefc18c gui: Keep short deviceID length consistent + xrefs (fixes #9313) (#9314) 1 year ago
proto e82ed6e3d3 style: gofumpt all the things (#9829) 11 months ago
script e82ed6e3d3 style: gofumpt all the things (#9829) 11 months ago
test e82ed6e3d3 style: gofumpt all the things (#9829) 11 months ago
.codecov.yml 9e857ed2d4 build: Add test coverage info (#7502) 4 years ago
.deepsource.toml c5ec6cd7ef build: Fix deepsource test & exclude patterns (#7969) 4 years ago
.gitattributes 6809d38cde lib/protocol: Revert protobuf encoder changes in v0.14.17 (fixes #3855) 8 years ago
.gitignore 0ea90dd932 build: add generating compat.json (#9700) 1 year ago
.golangci.yml fb5f1bb56a golangci: Skip godox 5 years ago
.policy.yml 896f9725ec chore: update policy to allow approvals by contributors (#9818) 11 months ago
.yamlfmt 8991ecf444 build: Add more GitHub Actions 2 years ago
AUTHORS 4b815fc086 chore(gui, man, authors): update docs, translations, and contributors 11 months ago
CONDUCT.md 6df3940c26 conduct: Upgrade to Contributor Covenant 7 years ago
CONTRIBUTING.md 784129e1cf gui: Switch to Weblate for translations (#8777) 2 years ago
Dockerfile 876d056705 build: Fixup Docker changes from previous (#9223) 2 years ago
Dockerfile.builder 876d056705 build: Fixup Docker changes from previous (#9223) 2 years ago
Dockerfile.stcrashreceiver 876d056705 build: Fixup Docker changes from previous (#9223) 2 years ago
Dockerfile.stdiscosrv 876d056705 build: Fixup Docker changes from previous (#9223) 2 years ago
Dockerfile.strelaypoolsrv ba6ac2f604 lib/geoip, cmd/relaypoolsrv, cmd/ursrv: Automatically manage GeoIP updates (#9342) 1 year ago
Dockerfile.strelaysrv 876d056705 build: Fixup Docker changes from previous (#9223) 2 years ago
Dockerfile.stupgrades 876d056705 build: Fixup Docker changes from previous (#9223) 2 years ago
Dockerfile.ursrv 5c65a1bc83 build: Ursrv image for infrastructure 1 year ago
GOALS.md dcafd6ec72 readme: Style fixes, add security note (#9136) 2 years ago
LICENSE f7fc0c1d3e all: Update license url to https (ref #3976) 8 years ago
README-Docker.md 429672e0b4 docs(docker): add healthcheck to docker-compose (#9742) 1 year ago
README.md 5d27185083 Removed no longer relevant Bountysource link (#9480) 1 year ago
build.go e82ed6e3d3 style: gofumpt all the things (#9829) 11 months ago
build.ps1 04ff890263 build: Clean up build.sh, add build.ps1 (#6689) 5 years ago
build.sh c454fc8baa chore(build): use conventional commit title in update script (#9747) 1 year ago
compat.yaml 0ea90dd932 build: add generating compat.json (#9700) 1 year ago
go.mod cc09f0170d build(deps): update dependencies (#9773) 1 year ago
go.sum cc09f0170d build(deps): update dependencies (#9773) 1 year ago
tools.go 209e68c1ba build: Update quic-go for Go 1.19 (#8483) 3 years ago

README-Docker.md

Docker Container for Syncthing

Use the Dockerfile in this repo, or pull the syncthing/syncthing image from Docker Hub.

Use the /var/syncthing volume to have the synchronized files available on the host. You can add more folders and map them as you prefer.

Note that Syncthing runs as UID 1000 and GID 1000 by default. These may be altered with the PUID and PGID environment variables. In addition the name of the Syncthing instance can be optionally defined by using --hostname=syncthing parameter.

To grant Syncthing additional capabilities without running as root, use the PCAP environment variable with the same syntax as that for setcap(8). For example, PCAP=cap_chown,cap_fowner+ep.

To set a different umask value, use the UMASK environment variable. For example UMASK=002.

Example Usage

Docker cli

$ docker pull syncthing/syncthing
$ docker run -p 8384:8384 -p 22000:22000/tcp -p 22000:22000/udp -p 21027:21027/udp \
    -v /wherever/st-sync:/var/syncthing \
    --hostname=my-syncthing \
    syncthing/syncthing:latest

Docker compose

---
version: "3"
services:
  syncthing:
    image: syncthing/syncthing
    container_name: syncthing
    hostname: my-syncthing
    environment:
      - PUID=1000
      - PGID=1000
    volumes:
      - /wherever/st-sync:/var/syncthing
    ports:
      - 8384:8384 # Web UI
      - 22000:22000/tcp # TCP file transfers
      - 22000:22000/udp # QUIC file transfers
      - 21027:21027/udp # Receive local discovery broadcasts
    restart: unless-stopped
    healthcheck:
      test: curl -fkLsS -m 2 127.0.0.1:8384/rest/noauth/health | grep -o --color=never OK || exit 1
      interval: 1m
      timeout: 10s
      retries: 3

Discovery

Note that Docker's default network mode prevents local IP addresses from being discovered, as Syncthing is only able to see the internal IP of the container on the 172.17.0.0/16 subnet. This will result in poor transfer rates if local device addresses are not manually configured.

It is therefore advisable to use the host network mode instead:

Docker cli

$ docker pull syncthing/syncthing
$ docker run --network=host \
    -v /wherever/st-sync:/var/syncthing \
    syncthing/syncthing:latest

Docker compose

---
version: "3"
services:
  syncthing:
    image: syncthing/syncthing
    container_name: syncthing
    hostname: my-syncthing
    environment:
      - PUID=1000
      - PGID=1000
    volumes:
      - /wherever/st-sync:/var/syncthing
    network_mode: host
    restart: unless-stopped
    healthcheck:
      test: curl -fkLsS -m 2 127.0.0.1:8384/rest/noauth/health | grep -o --color=never OK || exit 1
      interval: 1m
      timeout: 10s
      retries: 3

Be aware that syncthing alone is now in control of what interfaces and ports it listens on. You can edit the syncthing configuration to change the defaults if there are conflicts.

GUI Security

By default Syncthing inside the Docker image listens on 0.0.0.0:8384 to allow GUI connections via the Docker proxy. This is set by the STGUIADDRESS environment variable in the Dockerfile, as it differs from what Syncthing would otherwise use by default. This means you should set up authentication in the GUI, like for any other externally reachable Syncthing instance. If you do not require the GUI, or you use host networking, you can unset the STGUIADDRESS variable to have Syncthing fall back to listening on 127.0.0.1:

$ docker pull syncthing/syncthing
$ docker run -e STGUIADDRESS= \
    -v /wherever/st-sync:/var/syncthing \
    syncthing/syncthing:latest

With the environment variable unset Syncthing will follow what is set in the configuration file / GUI settings dialog.