| ... | ... | @@ -12,12 +12,13 @@ |
|
|
|
# lxc exec mycontainer -- /bin/ls /etc
|
|
|
|
/bin/ls: cannot access '/etc': No such file or directory
|
|
|
|
# lxc restore mycontainer init
|
|
|
|
// everything is fine
|
|
|
|
// everything is fine again
|
|
|
|
# lxc exec mycontainer -- /bin/ls /etc
|
|
|
|
|
|
|
|
|
|
|
|
https://github.com/lxc/lxd/blob/master/doc/index.md
|
|
|
|
Docs: https://github.com/lxc/lxd/blob/master/doc/index.md
|
|
|
|
|
|
|
|
https://stgraber.org/2016/03/11/lxd-2-0-blog-post-series-012/
|
|
|
|
Tutorial: https://stgraber.org/2016/03/11/lxd-2-0-blog-post-series-012/
|
|
|
|
|
|
|
|
Images: https://us.images.linuxcontainers.org/
|
|
|
|
|
| ... | ... | @@ -37,9 +38,12 @@ host# lxc list |
|
|
|
+------------+---------+-----------------------+------+------------+----------------+
|
|
|
|
| weimarnetz | RUNNING | 10.249.155.28 (eth0) | | PERSISTENT | 0 |
|
|
|
|
+------------+---------+-----------------------+------+------------+----------------+
|
|
|
|
|
|
|
|
// ssh auf port 22223 von außen geht an container 'weimarnetz' - siehe ip-addresse
|
|
|
|
host# iptables -A PREROUTING -i enp6s0f0 -p tcp -m tcp --dport 22223 -j DNAT --to-destination 10.249.155.28:22
|
|
|
|
host# netfilter save // regeln permanent speichern, liegen in /etc/iptables/rulesv.4
|
|
|
|
|
|
|
|
// regeln permanent speichern, liegen in /etc/iptables/rulesv.4
|
|
|
|
host# netfilter save
|
|
|
|
```
|
|
|
|
|
|
|
|
## nginx-Proxy + TLS (Let's Encrypt)
|
| ... | ... | @@ -91,7 +95,7 @@ server { |
|
|
|
# das gleiche nochmal in grün für tls
|
|
|
|
server {
|
|
|
|
# http2 hat einige vorzüge bezüglich geschwindigkeit.
|
|
|
|
listen 443 http2;
|
|
|
|
listen 443 ssl http2;
|
|
|
|
server_name hopglass.segfault.gq weimarnetz.segfault.gq;
|
|
|
|
|
|
|
|
# der pfad zum zertifikat mit acme.sh erstellbar z.b.
|
| ... | ... | |
