peturdainn, 7 months ago

@jan how much gains, and is it worth it if you only use it for sharing files externally?

jan, 7 months ago

@peturdainn Doubt it if it's just for external.

For me the interactive response time is close to 10x faster. I'll do a benchmark later with a big file, but I'm dealing with a lot of smallish files so .. it just works better for me.

nxadm, 7 months ago

@jan @peturdainn

I don't get the speed difference? Maybe using ipv4 NAT in docker vs direct network in lxd?

jan, 7 months ago

@nxadm @peturdainn

I'm pretty sure it also has to do with the fact i'm using the upstream docker image (without SSL enabled), and an nginx in front of it. This negates the use of http/2...

jan, 7 months ago

@nxadm @peturdainn

It also will definitely not help that I run docker inside a VM.

I should get off my ass and start building the containers I still use myself... but at that point I start wondering what the point is if I can just as well keep it in an LXC.

nxadm, 7 months ago

@jan @peturdainn

Bingo. ;)

LXC is certainly a good match for your use. But the comparison is not really fair in this VM based setup. ;)

jan, 7 months ago

@nxadm @peturdainn

I don't trust 3rd party docker images, and I really don't have the time to rebuild them all myself frequently enough ;)

nxadm, 7 months ago

@jan @peturdainn

Most are trivial, but a few are indeed a lot of work.

jan, 7 months ago

@nxadm @peturdainn

You do a scripted rebuild? Jenkins in-house? Full blown self-hosted github/gitlab? :p

haploc, 7 months ago

@jan @nxadm @peturdainn kpack in k8s :P

jan, 7 months ago

@haploc @nxadm @peturdainn

Shoot you, I must!

nxadm, 7 months ago

@jan @peturdainn

So how does lxc handle reproducibility, eg when you need to move the setup to a new host?

jan, 7 months ago

@nxadm @peturdainn

I have Ansible for that.
I actually have Ansible also for my docker containers...

peturdainn, 7 months ago

@jan @nxadm (don't shoot me) my container setup is a bunch of yaml files

Last year I had a hardware crash, so I restored the data folders from backup to another machine, installed the containers with the yaml files, and was up and running within 30 minutes

nxadm, 7 months ago

@peturdainn @jan

I smell docker-compose. ;)

peturdainn, 7 months ago

@nxadm @jan sorry, turns out I'm a UI person, and I can copy the yaml into the QNAP Container Station.
Internally it will do what you think it does ;)

nxadm, 7 months ago

@peturdainn @jan

Hehe. A very special kind of UI person, copying YAML around :)

peturdainn, 7 months ago

@nxadm @jan I am 110% fan of config files

My main problem is (my) memory: I can't memorize commandline options, so next to config files I have TXT files with commandline syntaxes to copy/paste for various stuff I need to do.

nxadm, 7 months ago

@peturdainn @jan

I am pretty good with cmd opions, but I must confess I have too many md files for stuff like that... :)

jan, 7 months ago

@peturdainn @nxadm

I've tried to go back to just yaml files (docker-compose), but I do some more interesting things (like injecting certain configs straight into the docker volumes where needed) that I just can't really do properly with docker-compose.

It also has all kinds of hooks to automatically create nfs mounts/... on my NAS.

jan, 7 months ago

@nxadm @peturdainn

You run containers bare-metal?
I guess - if rootless - but I don't want to throw them on my #proxmox host either. I'm trying to keep that one as clean as possible.

nxadm, 7 months ago

@jan @peturdainn

I run them in a Ubuntu physical install that also does NFS shares and holds the backups on an external zfs mirror.

peturdainn, 7 months ago

@nxadm @jan I'm dogfooding(*) and aiming for 'good enough' security so I'm running my containers in QNAP Container Station. Non-privileged official images provided by the projects.

I'm aware of the risks and all but as I said, good enough for me and I can't be bothered to learn more details about this, I want to spend my time on other (embedded) stuff

(*)running a BE/NL user forum for QNAP users, etc...