47 lines
1.0 KiB
Plaintext
47 lines
1.0 KiB
Plaintext
### This is a yaml representation of the profile.
|
|
### Any line starting with a '# will be ignored.
|
|
###
|
|
### A profile consists of a set of configuration items followed by a set of
|
|
### devices.
|
|
###
|
|
### An example would look like:
|
|
### name: onenic
|
|
### config:
|
|
### raw.lxc: lxc.aa_profile=unconfined
|
|
### devices:
|
|
### eth0:
|
|
### nictype: bridged
|
|
### parent: lxdbr0
|
|
### type: nic
|
|
###
|
|
### Note that the name is shown but cannot be changed
|
|
|
|
config:
|
|
boot.autostart: "true"
|
|
linux.kernel_modules: ip_tables,ip6_tables,netlink_diag,nf_nat,overlay
|
|
raw.lxc: |
|
|
lxc.apparmor.profile=unconfined
|
|
lxc.mount.auto=proc:rw sys:rw
|
|
lxc.cap.drop=
|
|
security.nesting: "true"
|
|
security.privileged: "true"
|
|
description: ""
|
|
devices:
|
|
aadisable:
|
|
path: /sys/module/nf_conntrack/parameters/hashsize
|
|
source: /dev/null
|
|
type: disk
|
|
aadisable1:
|
|
path: /sys/module/apparmor/parameters/enabled
|
|
source: /dev/null
|
|
type: disk
|
|
eth0:
|
|
nictype: bridged
|
|
parent: br0
|
|
type: nic
|
|
root:
|
|
path: /
|
|
pool: default
|
|
type: disk
|
|
name: default
|