Unterschiede

Hier werden die Unterschiede zwischen zwei Versionen angezeigt.

--- content:serverbasics:docker [2024/04/22 10:14] – Daniel
+++ content:serverbasics:docker [2024/05/18 23:04] – [Check Docker install] Daniel
@@ Zeile 191: / Zeile 191: @@
 Ceck the Environement to have the settings:
 <code>
 docker@pcserver2023:~> Abgemeldet
 Connection to localhost closed.
@@ Zeile 205: / Zeile 205: @@
 Now check ''docker info'':
 <code>
 docker@pcserver2023:~> docker info
@@ Zeile 260: / Zeile 259: @@
  Live Restore Enabled: false
  Product License: Community Engine
-WARNING: bridge-nf-call-iptables is disabled
-WARNING: bridge-nf-call-ip6tables is disabled
 </code>
@@ Zeile 270: / Zeile 266: @@
   * Storage driver and FS-Type : overlay2 should always be used, btrfs is outdated! XFS and d_type are important!
   * CGroup Version needs to be 2 or better
+===== IPTables =====
+If you see ''docker info''  saying:
+<code>
+WARNING: bridge-nf-call-iptables is disabled
+WARNING: bridge-nf-call-ip6tables is disabled
+</code>
+This should be fixed by:
+<code>
+# sudo echo "net.bridge.bridge-nf-call-iptables = 1">> /etc/sysctl.conf
+# sudo echo "net.bridge.bridge-nf-call-ip6tables = 1">> /etc/sysctl.conf
+# sudo modprobe br_netfilter
+# sudo sysctl --system
+</code>
 ===== Configuring Docker Daemon =====
@@ Zeile 277: / Zeile 294: @@
 ''~/.config/docker/daemon.json''
-**by default, the path and the file is not existent, create it within the docker user**.
+**by default, the path and the file is not existent, __create it new__  within the docker user**.
-For example, enable ipv6. See [[https://docs.docker.com/config/daemon/ipv6/|https://docs.docker.com/config/daemon/ipv6/]] for details.
+For example, enable IPv6. See [[https://docs.docker.com/config/daemon/ipv6/|https://docs.docker.com/config/daemon/ipv6/]] for details.
 <file>
@@ Zeile 285: / Zeile 302: @@
  "experimental": true,
  "ip6tables": true,
+ "ipv6": true,
+ "fixed-cidr-v6": "fd12:3456:789a:1::/64",
  "log-opts": {
    "max-size": "10m",
@@ Zeile 292: / Zeile 311: @@
 </file>
+You need to adjust cidr to match your network, check first 4 blocks of ''ip addr''
 Notice: Don't use ''userns-remap''  - this won't work and makes no sense in rootless.
@@ Zeile 325: / Zeile 346: @@
 Your done with the compose plugin
+===== Update =====
+If you want to update your docker- installation, there is not update- process but to use the same script again:
+<file>
+#!/bin/bash
+#Upgrade docker rootless and plugin
+systemctl --user stop docker
+rm -f ~/bin/dockerd
+curl -fsSL https://get.docker.com/rootless | sh
+#need to give the new binary permissions to acces privileged network ports (beneath 1024)
+sudo setcap 'cap_net_bind_service=+ep' ~/bin/rootlesskit
+# If you installed docker compose, check the newest version first at https://github.com/docker/compose/releases/latest
+curl -SL https://github.com/docker/compose/releases/download/v2.27.0/docker-compose-linux-x86_64 -o $DOCKER_CONFIG/cli-plugins/docker-compose
+</file>
 ===== Create a place for Yamls =====
@@ Zeile 337: / Zeile 377: @@
 As always, SSH into your docker- user and than create the folders and yml-files for docker compose and portainer.
 <code>
 obel1x@server:~> ssh localhost -l docker
 Password: