Merge "Remove unneeded iptables mount points"
This commit is contained in:
commit
f7df2c5ff4
|
@ -278,17 +278,7 @@ outputs:
|
||||||
- {get_attr: [ContainersCommon, docker_puppet_apply_volumes]}
|
- {get_attr: [ContainersCommon, docker_puppet_apply_volumes]}
|
||||||
- *deployed_cert_mount
|
- *deployed_cert_mount
|
||||||
-
|
-
|
||||||
# puppet saves iptables rules in /etc/sysconfig
|
|
||||||
- /etc/sysconfig:/etc/sysconfig:rw
|
|
||||||
# saving rules require accessing /usr/libexec/iptables/iptables.init, just bind-mount
|
|
||||||
# the necessary bit and prevent systemd to try to reload the service in the container
|
|
||||||
- /usr/libexec/iptables:/usr/libexec/iptables:ro
|
|
||||||
- /usr/libexec/initscripts/legacy-actions:/usr/libexec/initscripts/legacy-actions:ro
|
|
||||||
- /etc/corosync/corosync.conf:/etc/corosync/corosync.conf:ro
|
- /etc/corosync/corosync.conf:/etc/corosync/corosync.conf:ro
|
||||||
# Needed in order to call system iptables in order to ensure
|
|
||||||
# we have kernel compatible modules
|
|
||||||
# See https://bugzilla.redhat.com/show_bug.cgi?id=1665598
|
|
||||||
- /lib/modules:/lib/modules:ro
|
|
||||||
environment:
|
environment:
|
||||||
# NOTE: this should force this container to re-run on each
|
# NOTE: this should force this container to re-run on each
|
||||||
# update (scale-out, etc.)
|
# update (scale-out, etc.)
|
||||||
|
|
Loading…
Reference in New Issue