non-root Docker

 

 

docker daemon

# /etc/docker/daemon.json
{
  "userns-remap": "docker"
}

sub uid/gid maps

#/etc/subuid
root:300000:65536
ubuntu:301000:65536
docker:231072:65536

#/etc/subgid
root:300000:65536
docker:231072:65536

Networks admin

docker network add --subnet 172.22.22.0/24

proxy

docker network add --subnet 172.22.20.0/24