openstack/openstack-helm-infra
Code Issues Proposed changes
openstack-helm-infra/tools/gate/playbooks/deploy-docker/templates/fedora-docker.service.j2
portdirect bbf32935dc Docker: Run docker without iptables 
This PS updates the docker daemon settings to run without
apply iptables rules. This simplifies host network management by
removing one of the actors interacting with iptables.

Change-Id: I335247afddf736b60212d199a3b860c3c792977f
2017-12-30 21:59:19 -05:00

31 lines
909 B
Django/Jinja
Raw Blame History

[Unit]
Description=Docker Application Container Engine
Documentation=http://docs.docker.com
After=network.target docker-latest-containerd.service
Wants=docker-latest-storage-setup.service
Requires=docker-latest-containerd.service
[Service]
Type=notify
Environment=GOTRACEBACK=crash
ExecStart=/usr/bin/dockerd-latest \
--add-runtime oci=/usr/libexec/docker/docker-runc-latest \
--default-runtime=oci \
--containerd /run/containerd.sock \
--exec-opt native.cgroupdriver=systemd \
--userland-proxy-path=/usr/libexec/docker/docker-proxy-latest \
-g /var/lib/docker \
--storage-driver=overlay2 \
--log-driver=json-file \
--iptables=false
ExecReload=/bin/kill -s HUP $MAINPID
TasksMax=8192
LimitNOFILE=1048576
LimitNPROC=1048576
LimitCORE=infinity
TimeoutStartSec=0
Restart=on-abnormal
[Install]
WantedBy=multi-user.target
View Git Blame Copy Permalink