version: '3.7'
services:
  reverse:
    container_name: reverse
    ports:
     - "0.0.0.0:80:80"
     - "0.0.0.0:443:443"
    image: "theraw/reversed:L7"
    shm_size: '512MB'
    privileged: true
    restart: unless-stopped
    networks:
      reverse_net:
        ipv4_address: 172.69.0.70
    dns:
     - "1.1.1.1"
     - "1.1.0.0"
    cap_add:
     - "CAP_SYS_RESOURCE"
     - "CAP_SYS_TIME"
    sysctls:
     - "vm.nr_hugepages = 0"
     - "vm.vfs_cache_pressure = 100"
     - "fs.file-max = 1000000"
     - "kernel.randomize_va_space = 2"
     - "net.ipv4.ip_forward = 1"
     - "net.ipv4.tcp_syncookies = 1"
     - "net.ipv4.ip_local_port_range = 12000 65535"
     - "net.ipv4.tcp_window_scaling = 1"
     - "net.core.somaxconn = 65535"
     - "net.core.netdev_max_backlog = 2000"
     - "net.ipv4.tcp_max_syn_backlog = 2048"
     - "net.ipv4.tcp_fin_timeout = 30"
     - "net.ipv4.tcp_tw_recycle = 1"
     - "net.ipv4.tcp_tw_reuse = 1"
     - "net.core.default_qdisc = fq"
     - "net.ipv4.tcp_congestion_control = bbr"
     - "net.ipv4.tcp_synack_retries = 2"
     - "net.ipv4.tcp_syn_retries = 2"
     - "kernel.sched_autogroup_enabled = 0"
  
networks:
  reverse_net:
    driver: bridge
    driver_opts:
      com.docker.network.enable_ipv6: "false"
    ipam:
      driver: default
      config:
      - subnet: 172.69.0.0/16