I try to map and mount a RBD pool (from a ceph cluster) into a LXC container without success …:
The Ceph configuration file seems good:
If i look the mounted fs, i got one line for /sys with read-write and another one with read-only:
I guess i have to change some configurations into the CT's configuration file (/etc/pve/lxc/xxx.conf), some lxc.aa_profile or lxc.mount.auto …
But i wonder, is LXC the best way to mount and use a RBD pool? As much as possible i want to use LXC CT but without adding security risks …
Code:
/usr/bin/rbd map --pool rbd test --id test --keyring /etc/ceph/ceph.client.test.keyring
rbd: sysfs write failed
rbd: map failed: (30) Read-only file system
The Ceph configuration file seems good:
Code:
/etc/ceph/ceph.conf
[global]
auth_service_required = cephx
mon_initial_members = mon1,mon2,mon3
fsid = 618bacef-6194-964f-1649-fabcde186390
keyring = /etc/ceph/$cluster.$name.keyring
auth_supported = cephx
auth_cluster_required = cephx
mon_host = 192.168.0.90:6789,192.168.0.91:6789,192.168.0.92:6789
auth_client_required = cephx
If i look the mounted fs, i got one line for /sys with read-write and another one with read-only:
Code:
mount | grep sysfs
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
sysfs on /sys type sysfs (ro,nosuid,nodev,noexec,relatime)
sysfs on /sys/devices/virtual/net type sysfs (rw,relatime)
sysfs on /sys/devices/virtual/net type sysfs (rw)osuid odev oexec,relatime)
I guess i have to change some configurations into the CT's configuration file (/etc/pve/lxc/xxx.conf), some lxc.aa_profile or lxc.mount.auto …
But i wonder, is LXC the best way to mount and use a RBD pool? As much as possible i want to use LXC CT but without adding security risks …
Last edited: