Recent content by koalillo

  1. Weird behavior with CentOS 8.2 container

    Filed https://bugzilla.proxmox.com/show_bug.cgi?id=2807
  2. Weird behavior with CentOS 8.2 container

    Hi, After running user cron jobs, the user's systemd service goes failed: $ sudo systemctl status user@1000.service ● user@1000.service - User Manager for UID 1000 Loaded: loaded (/usr/lib/systemd/system/user@.service; static; vendor preset: disabled) Active: failed (Result: timeout)...
  3. Installing "Workstation" on CentOS 8 and rebooting "firewalls" my LXC container

    Installing the group "Gnome" seems to pull in everything I want, so for the moment I'll do that and skip the problematic "Core".
  4. Installing "Workstation" on CentOS 8 and rebooting "firewalls" my LXC container

    Well, I've narrowed it down to "Core", which is also not great, but should help. I'll try to narrow it down...
  5. Installing "Workstation" on CentOS 8 and rebooting "firewalls" my LXC container

    Why? The purpose of this host is to provide me a desktop I can access from anywhere. It's actually working very well (using xrdp + xorgxrdp) and it's very fast and lightweight because LXC containers are faster and lighter than VMs. I do suspect that Workstation is pulling some stuff that...
  6. Installing "Workstation" on CentOS 8 and rebooting "firewalls" my LXC container

    I just submitted the following bug, spamming here to get thoughts: https://bugzilla.proxmox.com/show_bug.cgi?id=2674 Apparently, installing the "Workstation" group on an LXC CentOS 8 container and restarting the container prevents further connections to non-SSH daemons on the container? Any...
  7. Toying with gvisor to run Docker inside an LXC container in a safe? way

    Just toyed a bit with Singularity in a CentOS 8 container. It seems... to work, so that's interesting. However, while it can use Docker Hub images and it's pretty similar, it's not a drop-in replacement (however, it seems Kubernetes can be configured to use it, so maybe you could run Kubernetes...
  8. Toying with gvisor to run Docker inside an LXC container in a safe? way

    I'm running it in a VM currently, but I'm running a 35€/month 48gb RAM server and LXC allows me to pack in a lot of stuff... Right now ideally I'd require 4 VMs for all the Docker stuff I want to do, which represents significant overhead on that. Anyway, the gVisor bug I filed was idiotic- it...
  9. Toying with gvisor to run Docker inside an LXC container in a safe? way

    Well, I'm thinking of a non-HA scenario- just being able to do development/CI on a container (e.g. run Jenkins on LXC and be able to do builds requiring Docker, using an LXC container as a dev workstation, etc.).
  10. Toying with gvisor to run Docker inside an LXC container in a safe? way

    Hi, The other day I stumbled upon gvisor, which is a Google container driver which can be used with Docker that apparently uses an approach which is "mostly user-mode"; it emulates a Linux kernel in usermode, so it might be a way to run Docker containers inside an LXC container without nesting...
  11. 5.3: Docker on LXC on ZFS

    IIRC the VFS storage driver doesn't do the copy-on-write trick to just store differences between layers, and there seems to be no driver which can work on LXC + ZFS which does the trick.
  12. Can I ask an uid range not to be mapped in an unprivileged container

    Yeah, sorry, I saw your first message but I was busy and I could not reply- the original post was misformatted and unclear- hope you didn't waste too much time figuring it out. In the end, I've went back to privileged containers as Docker doesn't work so well for me under LXC, so I'm running it...
  13. 5.3: Docker on LXC on ZFS

    overlay2 detects you are in a COW filesystem and rejects to work. The zfs driver doesn't seem to work
  14. 5.3: Docker on LXC on ZFS

    Solved my issues with FreeIPA https://forum.proxmox.com/threads/can-i-ask-an-uid-range-not-to-be-mapped-in-an-unprivileged-container.49544/ Now I wonder, is there a better storage driver than VFS to run inside an LXC container on a ZFS fs?
  15. Can I ask an uid range not to be mapped in an unprivileged container

    OK, solved this: 1) In /etc/pve/lxc/209.conf lxc.idmap = u 1284000000 1284000000 200000 lxc.idmap = g 1284000000 1284000000 200000 lxc.idmap = u 0 100000 65536 lxc.idmap = g 0 100000 65536 ; a noop mapping for my FreeIPA uid/gid range and the "standard one" 2) $ cat /etc/subuid...

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get your own in 60 seconds.

Buy now!