Closed johnwmail closed 1 month ago
I'm not familiar with sysbox-runc. Socket-proxy is just a SCRATCH image, so there is no /usr/sbin/iptables-restore
binary in the container image. There is also no glibc
or musl
in the image that could be needed to run iptables-restore.
Maybe it's worth a try to create a container image based on a distroless or a minimal linux image, like gcr.io/distroless/base-debian12:nonroot
, alpine:3.20
, or even Ubuntu.
Sample Dockerfile:
FROM wollomatic/socket-proxy:1 AS proxy
FROM gcr.io/distroless/base-debian12:nonroot AS base
VOLUME /var/run/docker.sock
EXPOSE 2375
ENTRYPOINT ["/socket-proxy"]
COPY --from=proxy ./healthcheck ./socket-proxy /
Thank for your sharing, thanks.
I noticed, it works if comment out "#internal: true" (it also work, if external: false), thanks
docker-compose:
error messages:
/etc/docker/daemon.json:
Any workaround how to solve it? thanks.