Podman

Podman is a drop-in replacement for Docker. I chose it because Justus suggested me to look into it while I was interviewing him for the DWeb blog, and other friends encouraged me to try it in multiple occasions.

By learning more about it, I found its advantages and its architecture to be very interesting, while remaining relatively simple, and (to the extent of my usage so far) completely compatible with Docker commands. I watched different videos (linked at the bottom of this page)

Rootless Podman configuration

Following the official rootless tutorial:

sudo apt install passt # apparently it is already installed as a dependency of podman’s apt package

In Linux, unprivileged users (non-sudo) do not have permission to open up ports below 1024. In order to allow ports ≥80 to be opened in rootless mode, a systemd parameter has to be set.

echo 'net.ipv4.ip_unprivileged_port_start=80' | sudo tee /etc/sysctl.d/99-rootless-ports.conf
sudo sysctl --system

Automatically start containers at boot

Follow the guide Autostarting Podman Containers. Deprecated. Using quadlets instead.

Quadlets

Quadlets are configuration files that allow Podman containers to run directly via systemd. Even though

Monitoring

For containers monitoring, I have decided to go with Beszel because it seems to be among the lightest and simplest options, but most importantly because the main developer and owner of the repository has a political statement in his bio 🔥!

#TODO))

Resources

• Monitoring my server with Beszel and Dozzle | Federico Scodelaroj
• Beszel Quadlet · henrygd/beszel · Discussion #572 · GitHub
• Chapter 21. Monitoring containers | Building, running, and managing containers | Red Hat Enterprise Linux | 8 | Red Hat Documentation

Resources

• GitHub - fpatrick/podman-quadlet: Personal Podman Quadlet configurations for self-hosted services in a homelab environment · GitHub