From 89cc0d4fafe23c7bb787fa436f17c97d67b688fd Mon Sep 17 00:00:00 2001 From: Jip-Hop <2871973+Jip-Hop@users.noreply.github.com> Date: Fri, 26 Jan 2024 18:08:00 +0100 Subject: [PATCH] Add Cockpit management --- docs/rootless_podman_in_rootless_jail.md | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) diff --git a/docs/rootless_podman_in_rootless_jail.md b/docs/rootless_podman_in_rootless_jail.md index 9ff804b..7add409 100644 --- a/docs/rootless_podman_in_rootless_jail.md +++ b/docs/rootless_podman_in_rootless_jail.md @@ -42,6 +42,8 @@ setcap cap_setgid+eip /usr/bin/newgidmap # Create new user adduser rootless +# Set password for user +passwd rootless # Clear the subuids and subgids which have been assigned by default when creating the new user usermod --del-subuids 0-4294967295 --del-subgids 0-4294967295 rootless @@ -86,6 +88,20 @@ The output of podman info should contain: Using metacopy: "false" ``` +## Cockpit management + +Inside the rootless jail run (as root user): + +```bash +dnf install cockpit cockpit-podman +systemctl enable --now cockpit.socket +ip a +``` + +Check the IP address of the jail and access the Cockpit web interface at https://0.0.0.0:9090 where 0.0.0.0 is the IP address you just found using `ip a`. + +Then login as user `rootless` with the password you've created earlier. Click on `Podman containers`. In case it shows `Podman service is not active` then click `Start podman`. You can now manage your rootless podman containers in the rootless jailmaker jail using the Cockpit web GUI. + ## TODO: On truenas host do: sudo sysctl net.ipv4.ip_unprivileged_port_start=23