How to install Twingate on Portainer / Docker Compose

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hello my name's Christopher and today I'll be showing you how to install twingate on portaner with a portaner Stacks which is Docker composed underneath uh so um a little bit about the series I'm going over home labs and go over installing things getting things set up working everything like that so if you're interested in that subscribe comment like and support the channel and let's get started so um this is the website for uh twingate and uh you can get to it by going to twingate.com or I've linked down description so twin gray makes zero trust Network that means that it trusts nobody in the chain the clients or the the whole network and nothing's trusted access easy to deploy and even easier to use and always secure it has a Mac app that you can get to um the powerful access controls and uh you can set policies and restrict certain clients and restrict by serial number um a device intelligence uh authentication biometric 25000 occasion security Keys multi-factor authentication attack type resources and even SSH seamless compliance with soc2 and HIPAA and gdpr and more you can deploy it to AWS Google Azure and Linux you can automate it with terraform plumy and an API with graphql and architect it for Speed and reliability security and fast growing companies and that's about twingate so let's get into installing it so now on the website you can go up to the top right sign in right here and then you can go in here and you can get a 14-day trial of the twin day business and you can go ahead and sign in with Google Microsoft GitHub LinkedIn and sign into existing Network down here so once you do that you can get to creating your twingate network so now once you sign in you're going to go ahead and add your remote Network right here and I'm going to do on-premise and I'm gonna name mine Big Bear net and then auto remote network uh so now I've added the remote Network so now we can deploy a connector so I'm going to go ahead and go here and um you'll select Docker and then you can generate your tokens and then you can turn on custom DNS to where you have your own DNS server and make connector available on on your local network and then local network connection logs you can add that if you want to and then um here's the docker command that you'd be running but we're going to be running Docker compose for portainer so now I'm going to generate my tokens right here and I'll be right back so now I generated my tokens and I'm going to um now I'm gonna come down here and you can see the docker command but this is not the one we want so we're going to have to go over to my gift created and show you the docker pose so I'm going to go over to my Docker compose script that I made it'll be down in description um for you for you to get to so um I'm gonna start with version uh 3.8 of Docker compose I'm gonna Define a service called twin gate connector I'm gonna say restart always so that means that anything that happens you stop it it'll restart everything so I'm gonna get the twin deck connector uh a version one right here and this is coming from Docker ebb so sdl cert file I'm gonna set that twing API endpoint and then twin gate Network and then access token refresh token the ones that I just generated and your hostname and now I'm going to set the ipv4 Ping group arrange and um you can't use the Ping group range of what they have you have to use this one if you want to need a Ubuntu at least um so I'm going to go over to a portaner and get this installed I'm gonna copy this first okay so now I'm in my portainer eye insulation I'm going to go to my local right here and then stacks and then add a stack up here and then I'm gonna name my stack twingate stack and then now I'm gonna paste in what I just copied over in my gist um so now we're gonna have to set the network and we're going to set the access token and the refresh token so you're going to go back over to your twing gate you're gonna scroll up you're going to see access token right here you're gonna copy it then you're going to go back over to Port Hanner you're you're gonna paste it in right here and then we're going to go back over to our uh twin gay and now a refresh token copy that one then now we're gonna put it in the refresh token right here and then now we're gonna go back over to Wingate we're going to scroll down you're going to see twingate network right here we're gonna copy this and we're gonna paste it in the twing gate environment variable right here and then now it should be ready to uh deploy okay now we can go over here and we can see it's starting [Music] so once you uh wait until it's fully starting the container you'll go back over to twinge and you'll see connected up here you'll see controller connected relay connected and you'll see information over here about your connection details and your version so now I'm going to go back over to my network up here I'm going to go over here to remote networks and then I'm going to say add resource down here and then I'm gonna name this ad guard home and then I'm gonna put the IP address of it in the local IP address I'm going to set up a Alias so I guard home um internal and so this is an alias domain that's set up so you can go to it either from the IP or the Alias right here so now I'm going to open port 80 and I'm gonna open port 80 on udm you can allow pings if you want to allow or block you can also put multiple ports in here so you can go ahead and just do 7200 and then 7200 so that's just an example to show you that it can accept multiple ports and then now once you're done with that uh you can go create resource but if you have a multiple remote networks you can go up here and uh you can select your your multiple networks right here and um now we can go ahead and create resource and we're going to say everyone and then now you can see that it is up and running and it has a a an IP address set an alias it and it's open these ports I made it where you normally get to these ports and we have pinging set and then it shows you which remote Network you're on so now you can go in here and you can you can edit details too and you can update the resource and um so let's see if this works okay now you can go get your clock clients up here by the download button right here but I'm gonna go and open up my Mac app and I'm gonna go down to the ad guard home one right here and I'm going to show you that the Alias does work so I'm going to put in the iguardhome.internal right here and then I'm going to go here and then it does work so the username uh and password it's asking for so I'm going to show you that I can sign in and this can uh are you gonna add a resource for anything locally on your network that your uh your your connector can access so now I've showed you the dailies works so you can go back up here you can go to the IP address now and I'll show you the IP address works so they both work and it's up and running so there you have it I just I'll walk you through step by step on getting twin gate a connector working on Port Hanner and then a connector your local resources to it so if you like the tutorial subscribe comment like and support the channel and if you need uh support or you have video suggestions you get on in the Big Bear community and join our Discord if you want to so stay tuned for more

Info

Channel: BigBearTechWorld

Views: 1,635

Rating: undefined out of 5

Keywords: Big Bear Tech World, Self Host, Home Lab, Docker, Docker Compose, Adguard, Portainer, Twingate

Id: FbOcKclD5w0

Channel Id: undefined

Length: 10min 22sec (622 seconds)

Published: Tue Aug 08 2023