新增 Service：Docker

2026-03-06 02:50:35 +00:00
parent 894dcf6fee
commit bcad233c5d
1 changed files with 39 additions and 0 deletions
--- a/Service%EF%BC%9ADocker.md
+++ b/Service%EF%BC%9ADocker.md
@@ -0,0 +1,39 @@
+# 安裝 Docker
+
+```bash
+apt update && apt install -y docker.io docker-compose-v2
+```
+
+# 將 Docker 權限賦予目前的使用者
+
+```bash
+usermod -aG docker $USER
+```
+
+```bash
+newgrp docker
+```
+
+# 問題一
+
+(2015/12/05) PVE 的 CT 安裝後無法啟動容器
+
+```
+Error response from daemon: failed to create task for container: failed to create shim task: OCI runtime create failed: runc create failed: unable to start container process: error during container init: open sysctl net.ipv4.ip_unprivileged_port_start file: reopen fd 8: permission denied
+```
+
+## 解決方法
+
+在 PVE 的 CT 設定檔中加上相容設定
+
+```
+nano /etc/pve/lxc/(CT ID).conf
+```
+
+加上以下內容
+
+```
+lxc.apparmor.profile: unconfined
+lxc.mount.entry: /dev/null sys/module/apparmor/parameters/enabled none bind 0 0
+lxc.mount.entry: /proc/sys/net/ipv4/ip_unprivileged_port_start proc/sys/net/ipv4/ip_unprivileged_port_start none bind 0 0
+```