coreos

I cannot seem to find any useful info on the topic. Furthermore, what is the best way to monitor CoreOS (we use observium). If standard Linux SNMP metrics are most you need, you just want to deploy a container that runs SNMP daemon. For that purpose you will probably need to expose it to host's network namespace ( --net=host , if you are using Docker) and then you definitely need to bind-mount /proc (with -v /proc:/hostproc passed to docker run ). The only unusual thing you would need point the SNMP daemon at is the /hostproc instead of /proc . You can probably try using the polinux/snmpd

I need to delete some rules with same comment. For example I have rules with comment = "test it", so i can get list of them like this: sudo iptables -t nat -L | grep 'test it' But how can i delete all PREROUTING rules with comment 'test it'? UPD: As @hek2mgl said, i can do something like this: sudo bash -c "iptables-save > iptables.backup" sed -i '/PREROUTING.*--comment.* "test it"/d' iptables.backup sudo iptables-restore < iptables.backup sudo rm iptables.backup But between save and restore could be changes in iptables, so after restore there will be problems =/ You can use the following

I followed this page on Protecting the Docker daemon Socket with HTTPS to generate ca.pem, server-key.pem, server-cert.pem, key.pem and key-cert.pem I wanted a remote Docker daemon to use those keys so i used rsync via ssh to send three of the files(ca.pem, server-key.pem and key.pem) to the remote host's home directory. The identity file for ssh into the remote host is called dl-datatest-internal.pem ubuntu@ip-10-3-1-174:~$ rsync -avz -progress -e "ssh -i dl-datatest-internal.pem" dockerCer/ core@10.3.1.181:~/ sending incremental file list ./ ca.pem server-cert.pem server-key.pem sent 3,410

How can i make a docker base image from a coreos iso image? i tried tar -cf the iso image to tar file, but it's failed. docker import ... just for .tar archive file? thanks It is untypical to go from a full OS image (even when it is a small OS) to a docker image. Actually CoreOS is more intended to run docker instead of beeing the appliance of a docker image. What base image you want to use and why? You might not need any if you pack your app with some dependencies (and run it on a Docker install in coreOS). I guess you would be able to extrace the ISO (some packers can do that) and remove the

原文地址： Docker container 以下指南显示了如何使用 静态引导过程 在rkt和Docker上运行etcd。 rkt 运行单节点的etcd 以下rkt run命令将在端口2379上公开etcd客户端API，并在端口2380上公开对等API。 配置etcd时使用主机IP地址。 export NODE1=192.168.1.21 信任CoreOS App签名密钥 。 sudo rkt trust --prefix quay.io/coreos/etcd # gpg key fingerprint is: 18AD 5014 C99E F7E3 BA5F 6CE9 50BD D3E0 FC8A 365E 运行etcd v3.2版本或指定其他发行版本。 sudo rkt run --net=default:IP=${NODE1} quay.io/coreos/etcd:v3.2 -- -name=node1 -advertise-client-urls=http://${NODE1}:2379 -initial-advertise-peer-urls=http://${NODE1}:2380 -listen-client-urls=http://0.0.0.0:2379 -listen-peer-urls=http://${NODE1}:2380 -initial