@rhatdan is starting a new video stream talking Podman and all things container-related! Each video will be about 5 to 10 minutes long, and the first one should drop tomorrow. Here's Dan talking about the upcoming videos. #podman#opensource
Są tu spece od Dockera? Próbuję uruchomić kontener Dockera używają Podmana (https://github.com/TechnitiumSoftware/DnsServer/blob/master/CHANGELOG.md), ale utknąłem. Po wielu próbach, kombinowaniu, aktualizacji setek programów, utknąłem na niemożności uruchomienia kontenera, bo twierdzi, że port 53/tcp jest w użyciu. Zrobiłęm już chyba wszystko, co mi wpadło do głowy, czyli wyłączenie systemd, wyłączenie nasłuchiwania przez systemd na porcie 53 i nic to nie daje. Co ciekawe, netstat nie pokazuje portu 53 jakoby był w użyciu, więc nie wiem nawet, jaki program może tego używać. Co ciekawe, jak wziąłem nmapa z innego hosta, to pokazuje, ze port 53 jest zamkniety, wiec cos tam nasluchuje, ale nie wiem co.
Podobno podman używa jakiegoś własnego serwera DNS do zarządzania siecią między kontenerami, ale nie ogarniam tego, a i nie wiem, czy tu może być problem. Poza tym serwerem podmana, nie przychodzi mi juz nic do glowy.
In just over 4 days from now, on Tues, May 21, 2024, at 11:00 a.m. EDT (UTC-5), we'll be in the Podman Cabal meeting. Currently only one topic about Fedora v5.0 Test Days, and room for more to be added! Agenda with video link: https://hackmd.io/gQCfskDuRLm7iOsWgH2yrg?both#podman#opensource
Mamy tu jakiś speców od Dockera?
Próbuję skonfigurować dockera używając podmana i udało mi się uruchomić kontener i podpiąć katalog z hosta do kontenera, ale sieci nie ogarniam.
Kontener jest uruchomiony na zwyklym uzytkowniku na serwerze. Działa dostęp do DNS i webowki z laptopa, ale z androida juz nie i nie mam pojecia co jest. Jak zmieniam dns na telefonie, to wifi krzyczy, ze niema neta.
Ta adresacja takze jest dla mnie jakas dziwna. LAN ma adresacje 192.168.X.X, a kontener ma siec 10.X.X.X.
Juz chyba wszystkiego probowalem. Wylaczylem firewalla na serwerze i chyba wszystko co blokuje reklamy na androidzie, ale nadal dupa.
Jakby kogos interesowalo, to probuje skonfigurowac "Technitium DNS Server"
#Podman v5.0.0 has been released! It’s the first major release in 2 years and includes several new features & significant changes:
➡️ a complete rewrite of the podman machine command to improve hypervisor support on macOS and Windows
➡️ supports OCI artifacts in manifest files,
➡️ adopts Pasta by default for rootless networking,
➡️ and more.
The next Podman Community Cabal meeting is happening in two weeks, on Tuesday, May 21, 2024, at 11:00am EDT (UTC-5). Currently no topics, so if you want to discuss something, please add it to the agenda! https://hackmd.io/gQCfskDuRLm7iOsWgH2yrg?both#opensource#podman
#Podman has been ported to #FreeBSD. And it can run Arch Linux for me.
Linux containers in FreeBSD can start through the old good #Linuxulator - which does not support complex features like cgroups or namespaces, which means I probably can't run a container inside a container. Yet.
But this Linux layer is actively supported in FreeBSD for almost 20 years and is rock-solid! It started in 2006 at Google, based on Linux kernel 2.6 and today it shows up as 5.15-compatible!
Been battling to get #LaravelSail working with rootless #Podman all evening and aren't having much luck. Boo to overly complex things.
It's so close to working well but the whole uid/gid mapping thing just falls apart when the container starts running things as different users. All of a sudden there're large parts of my source tree that I can't edit, not to mention being unable to use artisan make tools.
The Forgejo community has just published the 7.0.1 bug fix release[1]. I went to my server, did a systemctl stop forgejo, to stop the rootless container[2] I use to run it, issued podman pull codeberg.org/forgejo/forgejo:7-rootless to get the updates, and finally systemctl start forgejo and done. Updated. Thank you @forgejo for being awesome and working so hard on making things better and better!
debugging between podman's container / quadlet file with systemd is kinda tricky, especially when there is a typo in the container file, there is not warning or error i can find from journalctl. took me a whole day + night to realized that 1 single typo. the parser is just too graceful... #podman#systemd
"IPAM error: failed to find free IP in range: 10.89.0.1 - 10.89.0.254"
/run/user/1000/netns contains 257 netns-* files.
The thing is: ip netns list shows nothing, and podman network rm does not fix the issue. Rebooting probably will, but that's the Windows way of solving things …
Anyone running #PaperlessNGX#rootless using #Podman and #PodmanCompose under #Debian12? The volumes I'm mapping to the host always get chowned to 100999:100999, and that's with USERMAP_UID=1000 and USERMAP_GID=1000 in docker-compose.env.
Playing around with PODMAN_USERNS mainly leads to the container not starting at all (in at least one case because it can't install packages).
a) Set USERMAP_UID=0 and USERMAP_GID=0. Paperless will run as root inside of the container, which maps to your user's UID on the host. Some parts of #PaperlessNGX (e.g. Celery) might warn about running as root, but they don't refuse doing it.
b) Set USERMAP_UID=1000 and USERMAP_GID=1000 (or whatever they are on your host), add "user: 0" to each of the services in docker-compose.yml, start with PODMAN_USERNS=keep-id podman-compose up.