From 478aadf3fa64584d12e5610530dc8af1c56615d0 Mon Sep 17 00:00:00 2001 From: szaimen Date: Sat, 16 Jul 2022 10:52:42 +0200 Subject: [PATCH] add the docker rootless script to the documentation Signed-off-by: szaimen --- docker-rootless.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker-rootless.md b/docker-rootless.md index ad2f12dd..4077f78a 100644 --- a/docker-rootless.md +++ b/docker-rootless.md @@ -3,7 +3,7 @@ You can run AIO with docker rootless by following the steps below. 0. If docker is already installed, you should consider disabling it first: (`sudo systemctl disable --now docker.service docker.socket`) -1. Install docker rootless by following the official documentation: https://docs.docker.com/engine/security/rootless/#install. The easiest way is installing it **Without packages**. Further limitations, distribution specific hints, etc. are discussed on the same site. Also do not forget to enable the systemd service, which may not be enabled always by default. See https://docs.docker.com/engine/security/rootless/#usage. (`systemctl --user enable docker`) +1. Install docker rootless by following the official documentation: https://docs.docker.com/engine/security/rootless/#install. The easiest way is installing it **Without packages** (`curl -fsSL https://get.docker.com/rootless | sh`). Further limitations, distribution specific hints, etc. are discussed on the same site. Also do not forget to enable the systemd service, which may not be enabled always by default. See https://docs.docker.com/engine/security/rootless/#usage. (`systemctl --user enable docker`) 1. If you need ipv6 support, you should enable it by following https://docs.docker.com/config/daemon/ipv6/. The daemon.json file is most likely stored in `~/.config/docker/daemon.json`. 1. Do not forget to set the mentioned environmental variables and in best case add them to your `~/.bashrc` file as shown! 1. Expose the privileged ports by following https://docs.docker.com/engine/security/rootless/#exposing-privileged-ports. (`sudo setcap cap_net_bind_service=ep $(which rootlesskit); systemctl --user restart docker`)