Skip to content

Commit e2eee8f

Browse files
dkwodkwo
committed
containers-and-vms: refactor for clarity
1 parent b881811 commit e2eee8f

File tree

1 file changed

+11
-14
lines changed
  • src/config/containers-and-vms

1 file changed

+11
-14
lines changed

src/config/containers-and-vms/lxc.md

Lines changed: 11 additions & 14 deletions
Original file line numberDiff line numberDiff line change
@@ -12,17 +12,7 @@ favor of the CGroup namespace in recent kernels. LXD has become a Canonical
1212
project. Incus was forked from LXD to be a community driven alternative, and is
1313
led and maintained by many of the original creators.
1414

15-
## Configuring LXC
16-
17-
Install the `lxc` package.
18-
19-
Creating and running privileged containers as `root` does not require any
20-
configuration; simply use the various `lxc-*` commands, such as
21-
[lxc-create(1)](https://man.voidlinux.org/lxc-create.1),
22-
[lxc-start(1)](https://man.voidlinux.org/lxc-start.1),
23-
[lxc-attach(1)](https://man.voidlinux.org/lxc-attach.1), etc.
24-
25-
### Creating unprivileged containers
15+
## Creating unprivileged containers
2616

2717
User IDs (UIDs) and group IDs (GIDs) normally range from 0 to 65535.
2818
Unprivileged containers enhance security by mapping UID and GID ranges inside
@@ -57,6 +47,16 @@ defined in the file do not overlap. In this example, `root` controls UIDs (or,
5747
from `subgid`, GIDs) ranging from 1000000 to 1065535, inclusive; `user` controls
5848
IDs ranging from 2000000 to 2065535.
5949

50+
## Configuring LXC
51+
52+
Install the `lxc` package.
53+
54+
Creating and running privileged containers as `root` does not require any
55+
configuration; simply use the various `lxc-*` commands, such as
56+
[lxc-create(1)](https://man.voidlinux.org/lxc-create.1),
57+
[lxc-start(1)](https://man.voidlinux.org/lxc-start.1),
58+
[lxc-attach(1)](https://man.voidlinux.org/lxc-attach.1), etc.
59+
6060
Before creating a container, the user owning the container will need an
6161
[lxc.conf(5)](https://man.voidlinux.org/lxc.conf.5) file specifying the subuid
6262
and subgid range to use. For root-owned containers, this file resides at
@@ -128,9 +128,6 @@ In `/etc/rc.conf`, set the `CGROUP_MODE` variable to `unified`. Install the
128128
`incus` package, and [enable](../services/index.md#enabling-services) the
129129
`incus` service.
130130

131-
Some parts of Incus require optional dependencies, see
132-
[README.voidlinux](../package-documentation/index.md).
133-
134131
Add users who should have full control over Incus to the `_incus-admin` group.
135132

136133
Optionally, some users can be given limited access to Incus as described

0 commit comments

Comments
 (0)