Closed AstraLuma closed 4 years ago
I have no idea how to do this with rootfull containers without something like socat
.
With rootless, I think this would need some additions to slirp4ns as well as tooling additions to support the new port specification.
why would the container runtime have to do this? vs you doing it manually
Yes, you can bind mount the socket. But that requires special support in the container. (And not all services support listening on a UDS.)
Adding it to the container runtime means that you can do it generically--the container doesn't know it's being routed through a UDS. It's just listening on a port and the operator has complete flexibility about how to wire things up.
I want this for small hosting--not big enough to reach for tools like kubernetes, but still enough that juggling ports is just kinda annoying. Using an UDS instead of loopback port means that I can assign container sockets to actual meaningful names.
Maybe this can help? https://www.freedesktop.org/software/systemd/man/systemd-socket-proxyd.html
That'll get you the uds, but doesn't alleviate the port juggling. So it's kind of a mixed bag.
@astronouth7303 If you want this, you probably need to start working on PRs. Not sure anyone else is going to work on it.
A friendly reminder that this issue had no activity for 30 days.
Closing because of lack of activity.
/kind feature
Description
Would it be reasonable to add support for mapping ports inside a container to unix domain sockets on the host?
This would make things like managing many containers much easier, as you don't have to contend with port juggling.
Output of
podman version
:Output of
podman info --debug
:Package info (e.g. output of
rpm -q podman
orapt list podman
):Additional environment details (AWS, VirtualBox, physical, etc.):
Home desktop