rhcsa podman

rhcsa podman

  • Post author:
  • 帖子最後修改:2022 年 11 月 17 日

podman

在worksataion 

https://registry.lab.example.com
login: admin
Password: redhat321

				
					yum module install container-tools:2.0
podman search httpd

quay images 源設定

				
					vim /etc/containers/registries.conf
#源搜尋庫設定
[registries.search]
registries = ['registry.access.redhat.com', 'registry.redhat.io', 'docker.io', 'registry.lab.example.com', 'quay.lab.example.com']
#以下放置不想驗證的庫位址
[registries.insecure]
registries = ['registry.lab.example.com', 'quay.lab.example.com']

quay 登入

				
					podman login registry.redhat.io
Username: 
Password:
#沒有憑證登入
podman login --tls-verify=false quay.lab.example.com 
Username: admin
Password: 
Login Succeeded!

使用者隨啟動執行容器設定(NO ROOT)

user student

www path /home/student/web/html/

注意終端機不要身份亂切換,一次設定完

				
					podman login --tls-verify=false quay.lab.example.com 
Username: admin
Password: 
Login Succeeded!

mkdir -p web/html
echo "this is student@servere web1" > web/html/index.html
cat web/html/index.html 
this is student@servere web1
podman run -d --name web1 -v /home/student/web:/var/www:Z -p 8080:8080 quay.lab.example.com/rhel8/httpd-24-centos8:latest 
9c501912a1ad353ecd4db38820c08348f7b22f5b728bbf938da747ea1f4a8947
podman ps
CONTAINER ID  IMAGE                                               COMMAND               CREATED        STATUS            PORTS                   NAMES
9c501912a1ad  quay.lab.example.com/rhel8/httpd-24-centos8:latest  /usr/bin/run-http...  3 seconds ago  Up 4 seconds ago  0.0.0.0:8080->8080/tcp  web1

#創建設定檔案
cd .config/
mkdir -p systemd/user
cd systemd/user/
podman generate systemd -n web1 --files --new 
/home/student/.config/container-web1.service

#查看Linger
loginctl show-user student |grep Linger
Linger=no
[student@servere ~]$ loginctl enable-linger

#刪除web1容器,並設定開機自動執行
podman stop web1 ;podman rm web1 
web1
9c501912a1ad353ecd4db38820c08348f7b22f5b728bbf938da747ea1f4a8947

#設定開機啟動,確定狀態 container-web1.service enable
systemctl --user enable container-web1.service 
Created symlink /home/student/.config/systemd/user/default.target.wants/container-web1.service → /home/student/.config/systemd/user/container-web1.service.
[student@servere .config]$ systemctl --user status container-web1.service 
● container-web1.service - Podman container-web1.service
   Loaded: loaded (/home/student/.config/systemd/user/container-web1.service; enabled; vendor preset: e>
   Active: inactive (dead)
     Docs: man:podman-generate-systemd(1)

sudo reboot

#work