Adam Stacoviak
๐ค SpeakerAppearances Over Time
Podcast Appearances
Incas is a next-generation system container, application container, and virtual machine manager.
So much like you can do a VM and you want to actually have control of the kernel, or the container itself can be you're borrowing the OS level, the host's level kernel, where a VM you want to have your own kernel.
So it can do both of those things.
In easy exchange.
So unlike Proxmox, they're very much differentiated and actually largely abandoned from a CLI standpoint.
They don't really have a good CLI in the Proxmox world.
So if you want to spin up a new VM or a new LXC, you've got to do a bunch of clicking inside the web UI.
Whereas Incus has got a really great CLI.
You can script a lot of this stuff.
And the difference between a container and a VM from a scripting API CLI world is the same, like the same kind of commands, but arbitrarily different whenever you spin them up.
Why am I telling you this?
OK, the reason I'm telling you this is like is I want to I want to spin up different layers of Incas or a different container of VM.
And I want them to be in an isolated state.
I want that particular container.
container to know nothing about anything else around it as far as it's concerned it's in a black space like it's literally there's no star around it there's no asteroid there's no planet there's no moon like it's just in a sea of abyss and all it could do is do internet traffic out pull down updates send traffic back but to its peers there is no peer you could do that with typical networking but it sounds like with a multi-net or some telnet
food that I just don't have yet that I'm still learning about, I might be able to jail one of those containers or VMs in ways I just wasn't able to do before.
So that's why I'm camping out as this world of network isolation.
Put that new instance, that new VM or new container into network jail, essentially.
Or I have my own that I've authenticated with because you said you have to have an OIDC provider, right?
I've got to authenticate with Tailscale with one of those providers.