First make sure to enable the Podman socket:
systemctl enable --now podman.socket
Run the Portainer agent in a Podman root environment:
podman run -d --privileged \
-p 9001:9001 \
Alex Zolotarov webgtx
😃
webgtx
/ eipninstance.tf
Created
July 26, 2023 20:48
Attaching an EIP to an Instance with a pre-assigned private ip (VPC Only) [AWS]
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| resource "aws_vpc" "default" { | |
| cidr_block = "10.0.0.0/16" | |
| enable_dns_hostnames = true | |
| } | |
| resource "aws_internet_gateway" "gw" { | |
| vpc_id = aws_vpc.default.id | |
| } | |
| resource "aws_subnet" "tf_test_subnet" { |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl https://bootstrap.pypa.io/get-pip.py -o get-pip.py | |
| python3 get-pip.py --force-reinstall |
webgtx
/ portainerpluspodman.md
Last active
August 9, 2023 23:47
How to run portainer agent with podman
webgtx
/ insecurypodmanregistry.md
Created
August 10, 2023 17:51
How to access podman registry using http only
The next component to look at is the system-wide registries configuration file. On my system, that file resides at /etc/containers/registries.conf. And I will show a somewhat redacted version of mine as an example:
# This is a system-wide configuration file used to
# keep track of registries for various container backends.
# It adheres to TOML format and does not support recursive
# lists of registries.
[registries.search]
registries = ['docker.io', 'registry.fedoraproject.org', 'registry.access.redhat.com']
webgtx
/ tcp-socket-error-codes.md
Last active
February 19, 2025 18:36
— forked from gabrielfalcao/tcp-socket-error-codes-errno.txt
TCP socket error codes
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdarg.h> | |
| // END - Error and Die | |
| void end(const char *fmt, ...) { | |
| va_list ap; | |
| va_start(ap, fmt); | |
| vfprintf(stdout, fmt, ap); | |
| fprintf(stdout, "\n"); | |
| fflsuh(stdout); | |
| va_end(ap); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [kubernetes] | |
| name=Kubernetes | |
| baseurl=https://pkgs.k8s.io/core:/stable:/v1.28/rpm/ | |
| enabled=1 | |
| gpgcheck=1 | |
| gpgkey=https://pkgs.k8s.io/core:/stable:/v1.28/rpm/repodata/repomd.xml.key |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| podman run -it --rm -v /var/data:/sqm --security-opt label=disable docker.io/library/alpine sh | |
| # OR | |
| podman run -it --rm -v /var/data:/sqm:z docker.io/library/alpine sh # secure way |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Version": "2012-10-17", | |
| "Statement": [ | |
| { | |
| "Sid": "PublicReadGetObject", | |
| "Effect": "Allow", | |
| "Principal": "*", | |
| "Action": [ | |
| "s3:GetObject" | |
| ], |