infix icon indicating copy to clipboard operation
infix copied to clipboard
verified publisher icon kernelkit

Advanced Container Support

Open troglobit opened this issue 1 year ago • 0 comments

Tasks

  • [ ] Inherit DNS from host (dnsmasq) instead of podman default
  • [ ] Manage registries in configuration, including custom HTTPS certs
  • [ ] Manage volumes in configuration (only basic named volumes)
  • [ ] Support images from external media (encrypted?)
  • [ ] Support shared mounts/volumes from external media
  • [ ] Support tmpfs overlays, e.g., for /etc
  • [x] Support rootfs <read-only | tmpfs>?

Inherit DNS

It should be possible to inherit DNS from the host since we use dnsmasq and openresolv to handle static/dynamic (conf/dhc) DNS servers. We could even leverage dnsmasq's /etc/host support by adding entries for all running containers, e.g. CONTAINER-NAME.INFIX-HOST.DOMAIN.

Registries

  • Local registries may require validation of self-signed https certs.
  • Registries may take authentication, we need secure storage of auth. parameters somehow.

Links

For inspiration, this series of posts on Container Monitoring is really interesting. In particular, the HEALTHCHECK Guide is really good.

troglobit avatar Oct 28 '24 14:10 troglobit