Migrate From Docker to Podman

Switch from Docker to Podman in Cortex XSOAR. Migrate from Docker to Podman, for RHEL 8 or later and CentOS 8 or later.
Although Podman is set up automatically in a new server or engine installation, it is possible to migrate from Docker to Podman in an existing server or engine.
This procedure is intended for RHEL 8 or later and CentOS 8 or later. It may not work for other OS types.
  1. Install Podman with related packages by typing the following commands:
    • sudo yum -y install slirp4netns fuse-overlayfs
    • sudo yum -y module install container-tools
  2. Run the following commands:
    • sudo touch /etc/subuid /etc/subgid
    • sudo mkdir -p /home/demisto
    • sudo chown demisto:demisto /home/demisto
  3. As root user, edit one of the following
    config
    files, by using, for example the
    vim
    command.
    • /home/demisto/.config/containers/registries.conf
    • /etc/containers/registries.conf
    If it exists, you should change the
    /home/demisto/.config/containers/registries.conf
    file as it overrides the
    /etc/containers/registries.conf
    file.
  4. Replace the line that starts with
    unqualified-search-registries =
    where
    “docker.io”
    is the last item, and move
    “docker.io”
    to the start of the list.
  5. Change the
    subuids
    and
    subgids
    by running the following command:
    sudo usermod --add-subuids 200000-265535 --add-subgids 200000-265535 demisto
  6. Migrate existing containers to Podman by typing the following command:
    sudo sh -c "podman system migrate"
  7. Set the
    net.ipv4.ping-group-range
    , by typing the following commands:
    • sudo sh -c "echo 'net.ipv4.ping_group_range=0 2000000' > /etc/sysctl.d/demisto-ping.conf”
    • sudo sysctl -w "net.ipv4.ping_group_range=0 2000000"
  8. As root user, edit one of the following
    config
    files:
    • Server
      :
      /etc/demisto.conf
    • Engine
      :
      /usr/local/demisto/d1.conf
  9. Change the
    "container.engine.type": "docker"
    to
    “podman
    ”.
    If this line does not exist, add the following line to the file:
    "container.engine.type": "podman"
    "Server": { "HttpsPort": "443", "ProxyMode": true }, "container": { "engine": { "type": "podman" } }, "db": { "index": { "entry": { "disable": true
  10. Restart the service by running one of the following commands.
    • Server:
      sudo systemctl restart demisto
    • Engine:
      sudo systemctl restart d1

Recommended For You