knot knot

Job Specification

Below is an outline of a Docker/Podman job specification, showcasing all available options:

container_name: <container name>
hostname: <host name>
image: "<container image>"
auth:
  username: <username>
  password: <password>
ports:
  - <host port>:<container port>/<transport>
volumes:
  - <host path>:<container path>
command: [
  "<1>",
  "<2>"
]
privileged: <true | false>
network: <network mode>
environment:
  - "<variable>=<value>"
cap_add:
  - <cap>
cap_drop:
  - <cap>
devices:
  - <host path>:<container path>
dns:
  - <nameserver ip>
add_host:
  - <host name>:<ip>
dns_search:
  - <domain name>

Job Specification Details

container_name

The unique name assigned to the container. Ensure it does not conflict with other containers on the host.

hostname

The hostname to set inside the container.

image

The container image to use. This can be pulled from public registries like Docker Hub or private registries.

auth

Authentication credentials for private registries:

  • username: The registry username.
  • password: The registry password.

ports

Defines port mappings between the host and container in the format <host port>:<container port>/<transport>. The transport protocol (tcp or udp) is optional.

volumes

Specifies volume mappings in the format <host path>:<container path>. This ensures data persists beyond the container’s lifecycle.

command

Overrides the default command specified in the container image. Provide commands as a list of strings.

privileged

When set to true, grants the container extended privileges on the host. Use cautiously due to potential security risks.

network

Specifies the network mode for the container. Options include:

  • bridge: Default Docker network.
  • host: Shares the host’s network stack.
  • none: Disables networking.
  • container:<name|id>: Shares the network stack of another container.

environment

Defines environment variables in the format <variable>=<value>.

cap_add / cap_drop

Adds or removes Linux capabilities for the container, controlling privileged operations.

devices

Maps devices from the host to the container in the format <host path>:<container path>.

dns

Specifies custom DNS servers for the container.

add_host

Adds custom host-to-IP mappings to the container’s /etc/hosts file.

dns_search

Defines custom DNS search domains for the container.