-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathcrate.5
57 lines (57 loc) · 1.64 KB
/
crate.5
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
.\" Copyright (c) 2019
.\" Yuri Victorovich. All rights reserved.
.\"
.\" Redistribution and use in source and binary forms, with or without
.\" modification, are permitted provided that the following conditions
.\" are met:
.\" 1. Redistributions of source code must retain the above copyright
.\" notice, this list of conditions and the following disclaimer.
.\" 2. Redistributions in binary form must reproduce the above copyright
.\" notice, this list of conditions and the following disclaimer in the
.\" documentation and/or other materials provided with the distribution.
.\" 3. Neither the name of the University nor the names of its contributors
.\" may be used to endorse or promote products derived from this software
.\" without specific prior written permission.
.\"
.\"
.Dd August 8, 2019
.Dt CRATE 5
.Os
.Sh NAME
.Nm crate
.Nd containerizer for FreeBSD
.Sh SYNOPSIS
.Nm
.Ar crate-specification.yml
.Oc
.Nm
.Ar crate-file.crate
.Oc
.Sh DESCRIPTION
The
.Nm
utility is a containerizer program that is able to create containers from
container definition files, and then run containers as processes that have no
dependencies besides system functions in the kernel.
.Ss Mechanism of action
.Nm
uses FreeBSD jails to run containerized applications. It also uses ipfw(8)-based
firewall rules to route network traffic in and out of containers.
.Ss Invocation
There are two basic operations that
.Nm
supports:
.Ic create
and
.Ic run .
When
.Nm
is invoked with a crate definition file (having the .yml extension), this
triggers the
.Ic create
mode. When
.Nm
is invoked with a crate file (having the .create extension), this triggers
the
.Ic run
mode.