mount error(1): Operation not permitted

[Spokee]

I'm trying to connect a LXC container to a windows VM shared folder for JellyFin. The container is running on Alpine and when I try to mount the Windows share drive I get this error:
"mount error(1): Operation not permitted
Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log messages (dmesg)
mount: permission denied (are you root?)".
I've ran so many different commands to try and fix it but I keep getting the same error.
Is there anything I can do to fix this?

 

[Chris]

HI,
in order to access your CIFS share from within an unprivileged container, mount the CIFS share on the PVE host and use a bind-mount to access it in the container. See https://pve.proxmox.com/wiki/Unprivileged_LXC_containers#Using_local_directory_bind_mount_points

 

[Spokee]

HI,
in order to access your CIFS share from within an unprivileged container, mount the CIFS share on the PVE host and use a bind-mount to access it in the container. See https://pve.proxmox.com/wiki/Unprivileged_LXC_containers#Using_local_directory_bind_mount_points

Hiya, I've followed the commands that's on the link but I'm confused how that fixes my issue?

 

[Dunuin]

You simply can't mount a NFS/SMB share inside a unprivileged LXC. But what you can do is bind-mounting a folder from the PVE host into a unprivileged LXC. And you can mount a NFS/SMB share on the PVE host.
So as a workaround you would need mount that NFS/SMB share on the PVE host and then bind-mount it from the PVE host into the unprivileged LXC.

Or alternatively switch your jellyfin to a privileged LXC or VM which would allow to directly mount SMB/NFS shares.

 

[Spokee]

You simply can't mount a NFS/SMB share inside a unprivileged LXC. But what you can do is bind-mounting a folder from the PVE host into a unprivileged LXC. And you can mount a NFS/SMB share on the PVE host.
So as a workaround you would need mount that NFS/SMB share on the PVE host and then bind-mount it from the PVE host into the unprivileged LXC.

Or alternatively switch your jellyfin to a privileged LXC or VM which would allow to directly mount SMB/NFS shares.

I've tried making it privileged. It still gives me the same error

 

[Chris]

I've tried making it privileged. It still gives me the same error

For privileged LXCs to mount CIFS shares, you will also have to enable the feature in <Container> > Options > Features > Edit. But I would not recommend exposing the LXC to the internet using such a configuration. Use a VM for such cases, as already suggested by @Dunuin

 

[Spokee]

For privileged LXCs to mount CIFS shares, you will also have to enable the feature in <Container> > Options > Features > Edit. But I would not recommend exposing the LXC to the internet using such a configuration. Use a VM for such cases, as already suggested by @Dunuin

Would hardware acceleration still work on JellyFin if I use a vm docker?

 

[Dunuin]

Only if you PCI passthrough that GPU (and then the host or other VMs/LXCs won't be able to use it anymore). But running running Docker in a LXC causes problems all the time too and running Docker in a VM is recommended.

 

[Spokee]

Only if you PCI passthrough that GPU (and then the host or other VMs/LXCs won't be able to use it anymore. But running running Docker in a LXC causes problems all the time too.

I don't have a GPU in my system, it's all CPU based

 

[Spokee]

I don't have a GPU in my system, it's all CPU based

Now I have an another issue, docker isnt working on my VM lol

 

[dipi]

I´m facing the same issue...
I have a VM with Open Media Vault and I want my qBittorrent inside a lxc Portainer to access that SMB shared folder.

I have you found any solution?

If I restore the Portainer Lxc not unprivilleged it wont open the ui.