Run Docker containers natively in Proxmox 9.1 (OCI images)

https://raymii.org/s/tutorials/Finally_run_Docker_containers_natively_in_Proxmox_9.1.html

61•jandeboevrie•1h ago

Comments

nirav72•1h ago

I played with this a bit today. Only downside is, no easy way to update containers yet. But on the other hand, no more dealing with macvlan or custom docker networks.

dijit•1h ago

“update”, I assume you mean “recreate with new image”?

I think docker itself doesn’t support that.

doubled112•1h ago

I use Docker compose to recreate containers with a new image regularly.

I'm sure you could be creative with volumes in Proxmox and build a new LXC container from a new OCI image with the old volumes attached.

dijit•1h ago

> I use Docker compose to recreate containers with a new image regularly.

try doing so without the compose file though.

doubled112•1h ago

That's true, isn't it? It was one of those features you'd think they would have had figured out, but no.

prmoustache•52m ago

Isn't the ability to do blue/green deployments, canary releases and easy rollbacks huge incentives to use containers?

I think virtually nobody cares about being able to change the image of a container when you can so easily start a new one.

danudey•28m ago

The idea is that your container image is the thing you want, and is (relatively) immutable, so you delete and create containers when you want things to change. If you need state you can do that with volume mounts, but the idea is that you don't need to 'update' a container, you just replace it with a new one.

That's also what docker compose does, under the hood. It doesn't 'update' a container, it just deletes it and recreates it with the new image and the same settings/name/ports/volumes/etc.

k__•1h ago

Is this similar to what FlyIO is doing? Running containers as microVMs?

indigodaddy•49m ago

Perhaps in spirit? But I don't think you can term LXC a microVM, and I doubt they start close to as fast as Firecracker or smolbsd, and similar ilk. EDIT - appears I am probably wrong about firecracker being faster than LXC as LXC is kernel based virtualization and likely has faster startup than microVMs?

_ache_•51m ago

I have an "error" "I am not a teapot"

719 - I am not a teapot Espresso Web (Red Hat Enterprise Linux) at raymii.org

Looks suspicious, ... not 418, 719.

radiator•34m ago

I think 418 is 'I am a teapot' so it would not be correct to use it in your case. 719 must be a typo though, perhaps it should be 419.

dizhn•34m ago

They are converted to LXC images then run. No compose file either. Still pretty neat.

caymanjim•6m ago

It's unclear to me why running Docker directly in Proxmox (it's just Debian) and using it like any other Docker host is a bad idea, and why this extra layer of abstractions is preferable.

Docker has security issues if you're not careful, and it's frankly kind of a shitshow out of the box with defaults. Maybe that's part of the reason. But I struggle to see how a bespoke solution like this is the right answer.

Nano Banana Pro

New Glenn Update – Blue Origin

Run Docker containers natively in Proxmox 9.1 (OCI images)

GitHut – Programming Languages and GitHub (2014)

New OS aims to provide (some) compatibility with macOS

Data-at-Rest Encryption in DuckDB

NTSB Preliminary Report – UPS Boeing MD-11F Crash [pdf]

The Lions Operating System

Okta's NextJS-0auth troubles

Microsoft makes Zork open-source

Android and iPhone users can now share files, starting with the Pixel 10

Launch HN: Poly (YC S22) – Cursor for Files

Go Cryptography State of the Union

Kagi Assistants

Free interactive tool that shows you how PCIe lanes work on motherboards

Adversarial poetry as a universal single-turn jailbreak mechanism in LLMs

Readonly Characters Are a Big Deal

Show HN: F32 – An Extremely Small ESP32 Board

Ask HN: How are Markov chains so different from tiny LLMs?

Mozilla says it's finally done with Onerep

Interactive World History Atlas Since 3000 BC

ArkA – A minimal open video protocol (first MVP demo)

OOP is shifting between domains, not disappearing

Freer Monads, More Extensible Effects (2015) [pdf]

Two recently found works of J.S. Bach presented in Leipzig [video]

What's in a Passenger Name Record (PNR)? (2013)

Show HN: My hobby OS that runs Minecraft

CBP is monitoring US drivers and detaining those with suspicious travel patterns

Red Alert 2 in web browser

New Proofs Probe Soap-Film Singularities

Nano Banana Pro

New Glenn Update – Blue Origin

Run Docker containers natively in Proxmox 9.1 (OCI images)

GitHut – Programming Languages and GitHub (2014)

New OS aims to provide (some) compatibility with macOS

Data-at-Rest Encryption in DuckDB

NTSB Preliminary Report – UPS Boeing MD-11F Crash [pdf]

The Lions Operating System

Okta's NextJS-0auth troubles

Microsoft makes Zork open-source

Android and iPhone users can now share files, starting with the Pixel 10

Launch HN: Poly (YC S22) – Cursor for Files

Go Cryptography State of the Union

Kagi Assistants

Free interactive tool that shows you how PCIe lanes work on motherboards

Adversarial poetry as a universal single-turn jailbreak mechanism in LLMs

Readonly Characters Are a Big Deal

Show HN: F32 – An Extremely Small ESP32 Board

Ask HN: How are Markov chains so different from tiny LLMs?

Mozilla says it's finally done with Onerep

Interactive World History Atlas Since 3000 BC

ArkA – A minimal open video protocol (first MVP demo)

OOP is shifting between domains, not disappearing

Freer Monads, More Extensible Effects (2015) [pdf]

Two recently found works of J.S. Bach presented in Leipzig [video]

What's in a Passenger Name Record (PNR)? (2013)

Show HN: My hobby OS that runs Minecraft

CBP is monitoring US drivers and detaining those with suspicious travel patterns

Red Alert 2 in web browser

New Proofs Probe Soap-Film Singularities

Run Docker containers natively in Proxmox 9.1 (OCI images)

Comments