• SuddenlyBlowGreen@lemmy.world
    link
    fedilink
    arrow-up
    6
    ·
    1 year ago

    What makes you dislike docker?

    At least from a development perspecrive, it’s really convenient, especially when paired with a CICD system and container registry.

    • 9488fcea02a9
      link
      fedilink
      arrow-up
      3
      arrow-down
      1
      ·
      1 year ago

      I tried it once and it rewrote all my firewall rules without telling me

      • Toribor@corndog.social
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        Sounds like you were using Docker Desktop on Windows maybe? It’s… pretty meh. But Docker on Linux is phenomenal. Docker on Windows is mostly just a way to make it accessible to developers stuck on Windows.

      • moonpiedumplings@programming.dev
        link
        fedilink
        arrow-up
        2
        ·
        edit-2
        1 year ago

        Yeah that’s a gripe of mine. Thankfully podman doesn’t do that.

        Docker also sometimes breaks lxd and libvirt networking by changing the default forward policy from accept to drop.

          • moonpiedumplings@programming.dev
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            Nope, I just tested and the rootful podman service doesn’t touch any iptables/firewall rules.

            It uses what is called a “CNI”, container network interface, to manage container networking rather than just overwriting all the iptables rules like docker does.