Pritunl is the best open source alternative to proprietary commercial vpn products such as Aviatrix and Pulse Secure. Create larger cloud vpn networks supporting thousands of concurrent users and get more control over your vpn server without any per-user pricing.
All images are published to the following registries
- 🥇 GitHub as
ghcr.io/jippi/docker-pritunl
⬅️ Recommended - 🥈 AWS as
public.ecr.aws/i2s8u4z7/pritunl
⬅️ Great alternative ⚠️ Docker Hub asjippi/docker-pritunl
⬅️ Only use:latest
as tags might disappear
Image tags with software specifications and version information can be found in the table below
Tag | Version | OS (Ubuntu) | MongoDB | Wireguard | Size |
---|---|---|---|---|---|
latest |
latest † | Bionic (18.04) | ✅ (4.4) | ✅ | ~390 MB |
latest-minimal |
latest † | Bionic (18.04) | ❌ | ✅ | ~190 MB |
latest-focal |
latest † | Focal (20.04) | ✅ (5.x) | ✅ | ~390 MB |
latest-focal-minimal |
latest † | Focal (20.04) | ❌ | ✅ | ~190 MB |
$version |
$version |
Bionic (18.04) | ✅ (4.4) | ✅ | ~390 MB |
$version-minimal |
$version |
Bionic (18.04) | ❌ | ✅ | ~190 MB |
$version-focal |
$version |
Focal (20.04) | ✅ (5.x) | ✅ | ~390 MB |
$version-focal-minimal |
$version |
Focal (20.04) | ❌ | ✅ | ~190 MB |
† Automation checks for new Pritunl releases nightly (CEST, ~3am), so there might be a day or two latency for most recent release
Configuration settings that can be used via --env
/ -e
CLI flag in docker run
.
PRITUNL_DONT_WRITE_CONFIG
if set,/etc/pritunl.conf
will not be auto-written on container start. Any value will stop modifying the configuration file.PRITUNL_DEBUG
must betrue
orfalse
- controls thedebug
config key.PRITUNL_BIND_ADDR
must be a valid IP on the host - defaults to0.0.0.0
- controls thebind_addr
config key.PRITUNL_MONGODB_URI
URI to mongodb instance, default is starting a local MongoDB instance inside the container. Any value will stop this behavior.
I would recommend using a Docker volume
or bind
mount for persistent data like shown in the examples below
data_dir=$(pwd)/data
mkdir -p $(data_dir)/pritunl $(data_dir)/mongodb
touch $(data_dir)/pritunl.conf
docker run \
--name pritunl \
--privileged \
--network=host \
--dns 127.0.0.1 \
--restart=unless-stopped \
--detach \
--volume $(data_dir)/pritunl.conf:/etc/pritunl.conf \
--volume $(data_dir)/pritunl:/var/lib/pritunl \
--volume $(data_dir)/mongodb:/var/lib/mongodb \
ghcr.io/jippi/docker-pritunl
data_dir=$(pwd)/data
mkdir -p $(data_dir)/pritunl $(data_dir)/mongodb
touch $(data_dir)/pritunl.conf
and then the following docker-compose.yaml
file in $(pwd)
followed by docker-compose up -d
version: '3.3'
services:
pritunl:
container_name: pritunl
image: ghcr.io/jippi/docker-pritunl
restart: unless-stopped
privileged: true
network_mode: host
dns:
- 127.0.0.1
volumes:
- './data/pritunl.conf:/etc/pritunl.conf'
- './data/pritunl:/var/lib/pritunl'
- './data/mongodb:/var/lib/mongodb'
I would recommend using a Docker volume
or bind
mount for persistent data like shown in the examples below
If you have MongoDB running somewhere else you'd like to use, you can do so through the PRITUNL_MONGODB_URI
env var like shown below
data_dir=$(pwd)/data
mkdir -p $(data_dir)/pritunl
touch $(data_dir)/pritunl.conf
docker run \
--name pritunl \
--privileged \
--network=host \
--dns 127.0.0.1 \
--restart=unless-stopped \
--detach \
--volume $(data_dir)/pritunl.conf:/etc/pritunl.conf \
--volume $(data_dir)/pritunl:/var/lib/pritunl \
--env PRITUNL_MONGODB_URI=mongodb://some-mongo-host:27017/pritunl \
ghcr.io/jippi/docker-pritunl
data_dir=$(pwd)/data
mkdir -p $(data_dir)/pritunl
touch $(data_dir)/pritunl.conf
and then the following docker-compose.yaml
file in $(pwd)
followed by docker-compose up -d
version: '3.3'
services:
pritunl:
container_name: pritunl
image: ghcr.io/jippi/docker-pritunl
restart: unless-stopped
privileged: true
network_mode: host
dns:
- 127.0.0.1
environment:
- PRITUNL_MONGODB_URI=mongodb://some-mongo-host:27017/pritunl
volumes:
- './data/pritunl.conf:/etc/pritunl.conf'
- './data/pritunl:/var/lib/pritunl'
If you don't want to use network=host
, then replace the --network=host
CLI flag with the following ports + any ports you need for your configured Pritunl servers.
--publish 80:80 \
--publish 443:443 \
--publish 1194:1194 \
--publish 1194:1194/udp \
or for docker-compose
ports:
- '80:80'
- '443:443'
- '1194:1194'
- '1194:1194/udp'
For any help specific to Pritunl please have a look at http://pritunl.com and https://github.com/pritunl/pritunl