EX180 OpenShift

Question 1

create deployment

Answer 1

oc create deployment gitea –port 3030
–image=registry.ocp4.example.com:8443/redhattraining/podman-gitea:latest

Question 2

bind or volume mount security options

Answer 2

Z, ro

Question 3

Troubleshoot mount file permissions

Answer 3

1) podman unshare ls -l ~/www

2) podman run –rm image-url id -g

3) podman unshare chgrp -R 994 ~/www

Question 4

Good DB practices

Answer 4

1) Use volume
2) Use private network instead of exposing port

Question 5

How to load data into postgres

Answer 5

1) If PG container has psql, enter the container and use it
2) If it doesn’t have a psql then use a temp container in same network

Question 6

Dum postgres db

Answer 6

pg_dump -Fc DATABASE -f BACKUP_DUMP

Question 7

Import data into postgres

Answer 7

psql -U DATABASE_USER -h DATABASE_CONTAINER \
-d DATABASE_NAME -f /tmp/SQL_FILE

Question 8

Display socket stats

Answer 8

podman exec -it CONTAINER ss -pant

Question 9

Run the host ss command withing container namespace

Answer 9

sudo nsenter -n -t CONTAINER_PID ss -pant

Question 10

Troubleshooting reachability

Answer 10

1) Check logs
2) Check port maps
3) Check port stats
4) if ss command missing then get PID and run ss with nsender
5) Check container binds on 0.0.0.0 instead of 127
6) Inspect container to see which network it uses
7) Inspect if DNS is enabled on network

Question 11

Troubleshoot volume

Answer 11

1) Check permission on source folder with unshare
2) Check Z option ( ls -Zd /www). result should be container_type instead of default_type

Question 12

Container PID

Answer 12

podman inspect CONTAINER –format ‘{{.State.Pid}}’