Search results

I just submitted the following bug, spamming here to get thoughts: https://bugzilla.proxmox.com/show_bug.cgi?id=2674 Apparently, installing the "Workstation" group on an LXC CentOS 8 container and restarting the container prevents further connections to non-SSH daemons on the container? Any...

Just toyed a bit with Singularity in a CentOS 8 container. It seems... to work, so that's interesting. However, while it can use Docker Hub images and it's pretty similar, it's not a drop-in replacement (however, it seems Kubernetes can be configured to use it, so maybe you could run Kubernetes...

I'm running it in a VM currently, but I'm running a 35€/month 48gb RAM server and LXC allows me to pack in a lot of stuff... Right now ideally I'd require 4 VMs for all the Docker stuff I want to do, which represents significant overhead on that. Anyway, the gVisor bug I filed was idiotic- it...

Well, I'm thinking of a non-HA scenario- just being able to do development/CI on a container (e.g. run Jenkins on LXC and be able to do builds requiring Docker, using an LXC container as a dev workstation, etc.).

Hi, The other day I stumbled upon gvisor, which is a Google container driver which can be used with Docker that apparently uses an approach which is "mostly user-mode"; it emulates a Linux kernel in usermode, so it might be a way to run Docker containers inside an LXC container without nesting...

IIRC the VFS storage driver doesn't do the copy-on-write trick to just store differences between layers, and there seems to be no driver which can work on LXC + ZFS which does the trick.

Yeah, sorry, I saw your first message but I was busy and I could not reply- the original post was misformatted and unclear- hope you didn't waste too much time figuring it out. In the end, I've went back to privileged containers as Docker doesn't work so well for me under LXC, so I'm running it...

overlay2 detects you are in a COW filesystem and rejects to work. The zfs driver doesn't seem to work

Solved my issues with FreeIPA https://forum.proxmox.com/threads/can-i-ask-an-uid-range-not-to-be-mapped-in-an-unprivileged-container.49544/ Now I wonder, is there a better storage driver than VFS to run inside an LXC container on a ZFS fs?

OK, solved this: 1) In /etc/pve/lxc/209.conf lxc.idmap = u 1284000000 1284000000 200000 lxc.idmap = g 1284000000 1284000000 200000 lxc.idmap = u 0 100000 65536 lxc.idmap = g 0 100000 65536 ; a noop mapping for my FreeIPA uid/gid range and the "standard one" 2) $ cat /etc/subuid...

Hi, I'm running FreeIPA and I would like to use unprivileged containers so I can use Docker in containers. My Proxmox host is joined to IPA, and my containers too. My FreeIPA install uses 1284000000-1284200000 for uids and gids. This breaks with: $ cat /etc/subuid root:100000:65536 $ cat...

Hi, I'm toying with unprivileged containers in order to be able to use Docker inside them. This seems to work, but it break my FreeIPA setup. My Proxmox host is joined to FreeIPA, and my provisioning procedure for containers also joins them to FreeIPA. This means that my user is in a very...

OK, using an unprivileged container helps. With keyctl I can run Docker. The overlay storage driver detects its on ZFS and refuses to work, but VFS works. I need to play with this as I suspect VFS is terrible. However, switching to an unprivileged container breaks my FreeIPA client setup.

Hi, I'm toying with running Docker inside a CentOS 7 LXC on a Proxmox whose storage is ZFS. The container has: $ cat /etc/pve/lxc/209.conf ... features: nesting=1 ... and is a privileged container. For starters, the only storage driver that allows me to start the Docker service is vfs. ZFS...

Could the wiki be amended a bit? I believe it's not publicly editable, is it? I'd replace: With something like "By default zed is configured to send emails to the root user and Proxmox VE forwards mails to root to the email address configured for the root user, so if Proxmox VE can send...

Installing zfs-zed starts its daemon and: $ grep root /etc/zfs/zed.d/zed.rc ZED_EMAIL_ADDR="root" , I already have root email redirected to my email address. There's stuff such as: #ZED_EMAIL_PROG="mail" do I need to configure it? According to...