#Question #Help

Dear #Lazyverse: What is the right #systemd #nspawn config file to run #bpftrace in the container?

I don't even get /sys/kernel/debug — it seems to be bind mounted, but appears empty in the container 😞

PrivateUsers=false is not sufficient.

It's all #Debian 11 bullseye stable, both host and container.

TIA!

After a while of doing this, I managed to get the system working properly. #systemd boots the container via #nspawn which runs a minimal #debian image and acts as a router and firewall, allowing the host to be a desktop machine and the second LAN device to connect to a switch, and provide further local network. All set up from a machine originally running windows without me once touching the machine. Remote sysadmin achievement unlocked.

At the moment it clearly boots the #nspawn container and moves the two Ethernet interfaces into the container. It also sets up an extra #veth pair, but for some reason I can't raise the veth pair, "ip link dev lan set up" from the host OS leaves the veth "lan" in the DOWN state... Wth? I think if I could get that veth up id be able to remote log in through #yggdrasil connection.

#Emacs #TRAMP does support #docker #kubernetes and #podman now, and will support #systemd #nspawn #container|s soon.

Lennart Pöttering himself blogged about the much much underrated #nspawn container concept from systemd. It's really amazing.

Here: https://0pointer.net/blog/testing-my-system-code-in-usr-without-modifying-usr.html

Yeah #systemd haters - right into your kisser :)

#Linux

I have also published the slides of my #systemd #nspawn talk: https://blog.lieter.nl/presentations/plexis-NLUUG-fall-2019-systemd-nspawn.pdf

It's a me! I'm at #NLUUG today! I'll discuss #systemd #nspawn later today. Come talk to me about containers, #DNS, #DevOps or anything else

Lil #Linux Evening Stream 🐧🌙 [Warframe and Chill] #GE-Proton #nspawn #gamingInAContainer

twitch.tv/archtoasty

Lil #Linux Evening Stream 🐧🌙 [Warframe and Chill] #GE-Proton #nspawn #gamingInAContainer

https://www.twitch.tv/archtoasty

A little tool I wrote at work: Xorcom-nspawn: A wrapper around #systemd-#nspawn guests with some minimal configuration:

http://git.xorcom.com/cgit/tools/xorcom-nspawn.git/

Assumes hosts uses #NetworkManager (using nmcli) and guest uses #Debian's #ifupdown. Handles autologin to the guest, and handles creating two network interfaces on guest:
* One direct channel to host
* One bridged to local network

All in all systemd-nspawn is quite nice.