#LXD rewrite 2023 #1278
#LXD rewrite 2023 #1278
Conversation
* remove passive voice * bullet items have periods ONLY when there is a qualifying sentence included within the bullet item * simplify word usag * use sentence style capitalization on headings * remove mention of `iptables` in the TOC document * remove `iptables` instructions from the firewall document
|
I took on this project as part of the documentation rewrite and cleanup routines. Some of the highlights here are the removal of |
docs/books/lxd_server/01-install.md
Outdated
|
|
||
| LXD must be installed from a snap for Rocky Linux. For this reason, we need to install `snapd` (and a few other useful programs) with: | ||
| LXD installation is from a snap on Rocky Linux. For this reason, you need to install `snapd` (and a few other useful programs) with: |
There was a problem hiding this comment.
Might want to go with, "requires a snap package" rather than "is from a snap". It's just a tiny bit more precise.
There was a problem hiding this comment.
Thanks @EzequielBruni I've integrated all of your suggestions. I appreciate the review!
|
|
||
| First, enter this command: | ||
|
|
||
| ``` | ||
| /sbin/modprobe zfs | ||
| ``` | ||
|
|
||
| This should not return an error, it should simply return to the command prompt when done. If you get an error, stop now and begin troubleshooting. Again, make sure that secure boot is off as that will be the most likely culprit. | ||
| If no errors, it will return to the prompt and echo nothing. If you get an error, stop now and begin troubleshooting. Again, ensure that secure boot is off. That will be the most likely culprit. |
There was a problem hiding this comment.
Maybe go with, "If there are no errors,"
docs/books/lxd_server/04-firewall.md
Outdated
| ## Firewall Set Up - firewalld | ||
|
|
||
| For _firewalld_ rules, we need to use [this basic procedure](../../guides/security/firewalld.md) or be familiar with those concepts. Our assumptions are the same as with the _iptables_ rules above: LAN network of 192.168.1.0/24 and a bridge named lxdbr0. To be clear, you might have multiple interfaces on your LXD server, with one perhaps facing your WAN as well. We are also going to create a zone for the bridged and local networks. This is just for zone clarity sake, as the other names do not really apply. The below assumes that you already know the basics of _firewalld_. | ||
| For _firewalld_ rules, you need to use [this basic procedure](../../guides/security/firewalld.md) or be familiar with those concepts. Our assumptions are: LAN network of 192.168.1.0/24 and a bridge named lxdbr0. To be clear, you might have many interfaces on your LXD server, with one perhaps facing your WAN. You are also going to create a zone for the bridged and local networks. This is just for zone clarity sake. The other zone names do not really apply. This procedure assumes that you already know the basics of _firewalld_. |
|
|
||
| Once you have your server environment set up, you'll probably be itching to get started with a container. There are a _lot_ of container OS possibilities. To get a feel for how many possibilities, enter this command: | ||
| You are probably can not wait to get started with a container. There are a many container operating system possibilities. To get a feel for how many possibilities, enter this command: |
There was a problem hiding this comment.
Remove the "are" from "You are"
|
|
||
| ``` | ||
| lxc launch images:rockylinux/8 rockylinux-test-8 | ||
| ``` | ||
|
|
||
| That will create a Rocky Linux-based container named "rockylinux-test-8". You can rename a container after it has been created, but you first need to stop the container, which starts automatically when it is launched. | ||
| That will create a Rocky Linux-based container named "rockylinux-test-8". You can rename a container after creating it, but you first need to stop the container, which starts automatically when launched. |
There was a problem hiding this comment.
* "starts automatically when created", maybe?
|
|
||
| ``` | ||
| lxc stop rockylinux-test-8 | ||
| ``` | ||
|
|
||
| Then simply move the container to a new name: | ||
| Move the container to a different name: |
There was a problem hiding this comment.
Maybe... "Use the move command to change the container's name."
|
|
||
| The author used LXD containers for PowerDNS public facing servers, and the process of updating those applications became so much more worry-free, since you can snapshot the container first before continuing. | ||
| The author used LXD containers for PowerDNS public facing servers, and the process of updating those applications became less worrisome, because of taking a snapshot of the container first before continuing. |
There was a problem hiding this comment.
"because of taking a snapshot of the container first before continuing" could be more simply phrased as "thanks to taking snapshots before every update"
Test results for 0b4ff55:
|
iptablesin the TOC documentiptablesinstructions from the firewall documentAuthor checklist (Completed by original Author)
Rocky Documentation checklist (Completed by Rocky team)