Yes. I tried this right now. Something along the lines of this:
* Click on CephFS filesystem (you can also use local and probably others).
* Hit Templates.
* Add Debian Buster 10.
* Hit Create CT
* Add using the Debian Buster template added above.
* Under the new LXC, go to Options --> Features and check "keyctl" and "Nesting".
* Boot up that LXC template, and get on the shell via ssh.
* Then run this inside the new LXC:
Code:
# update image
apt update
apt dist-upgrade
reboot
# Boot back up and login
# Install upstream Docker, don't use Debian's:
apt install apt-transport-https ca-certificates curl gnupg2 software-properties-common
curl -fsSL https://download.docker.com/linux/debian/gpg | apt-key add -
add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/debian $(lsb_release -cs) stable"
apt update
apt install docker-ce docker-ce-cli containerd.io
# Install a docker container, whatever you're using, I happen to want to use tensorflow:
docker pull tensorflow/serving
# Run docker container. Note this will complain you don't have a model if you use tensorflow above, which is ok.
docker run -p 80:80 -t tensorflow/serving
# Enter docker container. Use another window since the other is running above:
# (Note, i'm sure there's a proper way to do this, I don't use docker much):
docker exec -u 0 -it `docker ps|grep -v CONTAINER | head -1 | cut -d " " -f 1` bash
# Install toys inside docker:
apt install apache2 net-tools
echo foo >/var/www/html/index.html
* Then on your workstation and/or the docker hit port 80 of your LXC IP and it should give you apache from inside the docker.
Happy hacking,
-Jeff
