openstack/openstack-helm-infra
Code Issues Proposed changes
openstack-helm-infra/tools/gate/playbooks/deploy-docker/templates/centos-docker.service.j2
portdirect bbf32935dc Docker: Run docker without iptables 
This PS updates the docker daemon settings to run without
apply iptables rules. This simplifies host network management by
removing one of the actors interacting with iptables.

Change-Id: I335247afddf736b60212d199a3b860c3c792977f
2017-12-30 21:59:19 -05:00

33 lines
934 B
Django/Jinja
Raw Blame History

[Unit]
Description=Docker Application Container Engine
Documentation=http://docs.docker.com
After=network.target
Wants=docker-latest-storage-setup.service
[Service]
Type=notify
NotifyAccess=all
Environment=GOTRACEBACK=crash
Environment=DOCKER_HTTP_HOST_COMPAT=1
Environment=PATH=/usr/libexec/docker:/usr/bin:/usr/sbin
ExecStart=/usr/bin/dockerd-latest \
--add-runtime docker-runc=/usr/libexec/docker/docker-runc-latest \
--default-runtime=docker-runc \
--exec-opt native.cgroupdriver=systemd \
--userland-proxy-path=/usr/libexec/docker/docker-proxy-latest \
-g /var/lib/docker \
--storage-driver=overlay \
--log-driver=json-file \
--iptables=false
ExecReload=/bin/kill -s HUP $MAINPID
LimitNOFILE=1048576
LimitNPROC=1048576
LimitCORE=infinity
TimeoutStartSec=0
Restart=on-abnormal
MountFlags=share
KillMode=process
[Install]
WantedBy=multi-user.target
View Git Blame Copy Permalink