Running Docker Containers on PBS?

Verulam

New Member
Jul 29, 2024
15
1
3
Hi there

This is a just a query that I thought someone may have some experience with. I'm trying to troubleshoot it myself but would appreciate any thoughts?

We've got a physical PBS that looks after our various PVE clusters. It also acts as our QDevice for these clusters.

What I am trying to do is install Graylog (along with Opensearch & MondoDB) as containers is order for the PBS to function as a central Syslog server. The box is over-specced for PBS so I'm trying to extract more value from the hardware.

This process works fine on a vanilla Debian 12 VM: Clone the Graylog Git repo, then docker compose up and it all works.

However on PBS I am getting a raft of permission denied errors (Mongo & Java specifically) which I'm trying to work through but getting tangled up so any thoughts on how PBS is hardened over vanilla Debian would be much appreciated. I'm currently looking into adding AppArmor profiles (or just disabling it) and/or changing permissions on the mount points used by these containers.

Not urgent at all but thought I'd throw it out there...
 
Last edited:
Thanks Aaron, I think I'll try that. I'd heard you could do that but wasn't sure if it was a legit config. It does blur the lines between hypervisor and backup but I'd (try) not to run production workloads on it.

I disabled AppArmor as well as granting full permissions on the Docker mounts but didn't make any progress on getting them to run on PBS. Whereas I got it up an running in a Debian VM in 10 minutes.
 
just don't add that Proxmox VE instance to the cluster and keep it separate!
I personally use that combination to run the QDevice in a separate LXC container on a physical PBS host.
 
Stand alone PVE with PBS as VM runs fine and gives you the freedom to run other (small) Instances safetly. You can add the PBS Datastore Disks as raw device.