How does eG Enterprise Monitor Podman?

eG Enterprise employs agent-based approach to monitor Podman server. The agent based approach requires that an eG agent be deployed on a host to collect the metrics of interest from the target Podman server.

Podman can run containers in two modes:

• Rootless Mode - Runs containers as a non-root user (more secure).

• Rootful Mode - Runs containers with root privileges (needed for some system-level operations).

The benefits of using Rootless Mode (Default & Secure) are listed below:

• Runs containers without root privileges - No need for sudo.

• Better security - Containers run as the user, reducing system risks.

• Uses user namespaces - Maps container root (UID 0) to a non-root host user.

• Limited access to system resources - No privileged operations like low ports (<1024) or direct

The benefits of using Rootful Mode (Like Docker, More Privileges) are listed below:

• Runs containers with full root access - Requires sudo.

• Needed for privileged containers - Direct access to network, devices, and system services.

• Allows binding to low ports (<1024).

• Similar to Docker but without a daemon (dockerd).

eG Enterprise now includes support for monitoring rootless containers in Podman.