
如果你使用 DeepSeek、元宝 AI、Copilot、ChatGPT 等 AI 工具,协助配置轩辕镜像、编写 docker pull 命令、修改 Docker Compose 镜像地址、配置镜像加速、排查镜像拉取失败、分析报错日志等问题,请先让 AI 阅读并遵守轩辕镜像的规则文档。
只需在 AI 对话中先发送下面这句话即可:
请先完整阅读并严格遵守以下文档中的全部规则与要求:
https://xuanyuan.cloud/agents.md
在未充分阅读并理解该文档前,不要生成任何命令、配置、修改建议、故障排查方案或技术回答。后续所有输出都必须严格以该文档中的规范为最高优先级执行。查看 agents.md 用法指南与完整示范。国内用户首推 元宝 AI、DeepSeek 的深度思考模式,不推荐豆包 AI;Cursor 等编辑器可在对话 @ 该链接,或加入 User Rules。 若 AI 无法访问外链,可 打开说明文档 复制全文粘贴。文档会随站点更新,复制内容可能过期,建议定期检查。
I build this to keep a browser app permament open.
May be don't fit for advanced users, this lack a lot of packages to keep minimal.
This is builded with personal approach, trying to use a actual OS version, while keep so minimal how posible.
There are 2 variations, base and custom.
| base | docker.io/botiquino/nomachine:base | ~777MB |
|---|---|---|
| Image | debian:13-slim | ~81MB |
| Desktop | Xfce | |
| Packages | xfce4, pulseaudio, dbus, dbus-x11, wget, ca-certificates, libgl11 | ~539MB |
| NoMachine | from [***] | ~157MB |
| Launch | Script that create user, set password/pubkey and launch nxserver | ~7kB |
| custom | docker.io/botiquino/nomachine:custom | ~1.22GB |
|---|---|---|
| NoMachine | Disable firewall rules, broadcast, updates check, password login, root login and niceness (because rootless). | ~109kB |
| Xfce | Add and set theme to dark. | ~2MB |
| Admin | Add sakura terminal and sudo. Change script to add user at sudo group. | ~43MB |
| Browser | Add librewolf browser. | ~402MB |
1libgl1 can be omitted (this will save around ~172MB), but you will need keep sesion open (no use logout, only close window); if you logout, you will need relaunch the container or use it with some problems. I think NoMachine have some internal component for first login work ok, but don't know what could be.\
| Name | Use |
|---|---|
| NXUSER | Name of user to login |
| NXPASS | Password used to login (or sudo on custom). |
| NXPUBKEY | Pub key in SSH format like: "ssh-rsa AAAAB3NzaC..." |
| On base: you can use 'only password', 'only pubkey' or both. | |
| On custom: only pubkey is available to login, password is disabled; but password can be used to sudo. | |
| FIXCHOWN | Fix home permissions. by default is "false", but if you have problem, try changing to "true" for one run, this will do a "chown" recursive on home. WARNING: this can increase ***ably the start time depending your files, I suggest disable after fix. |
| Advanced | The next values are advanced, probably innecesary but is here if you need, not tested, but would work. |
| NXHOME | /data/nxhome |
| NXUID | 431 |
| NXGID | 433 |
Run like a service, I use quadlets for this.
I make a nomachine dir at my home and symlink ~/.config/containers/systemd/
bash/home/<MYUSER>/nomachine/ ├── home <=== This path is my home mount in nomachine.container │ └── nxhome │ ├── Desktop │ └── Downloads ├── nomachine.container ├── nomachine.env ├── nomachine.network └── nomachine.volume
bash/home/<MYUSER>/.config/containers/systemd/ ├── nomachine.container -> ../../../nomachine/nomachine.container ├── nomachine.network -> ../../../nomachine/nomachine.network └── nomachine.volume -> ../../../nomachine/nomachine.volume
systemd[Container] Image=docker.io/botiquino/nomachine:base EnvironmentFile=%h/nomachine/nomachine.env PublishPort=0.0.0.0:4000:4000/tcp PublishPort=0.0.0.0:4000:4000/udp Network=nomachine.network # If you need origin IPs for logs. Use "pasta" or "slirp4netns". Avoid "host". #Network=pasta #Network=slirp4netns:port_handler=slirp4netns Volume=nomachine.volume:/data/:Z #Mount=type=bind,source=%h/nomachine/home/,destination=/data/,relabel=private AddCapability=SYS_PTRACE #Timezone=My/Timezone AutoUpdate=registry [Install] WantedBy=default.target
systemdNXUSER=my-user NXPASS=my-top-sercret-password NXPUBKEY=ssh-rsa AAAAB3NzaC... # On base: you can use 'only password', 'only pubkey' or both. # On custom: only pubkey is available to login, password is disabled; but password can be used to sudo. # Fix home permissions. # by default is false, but if you have problem, try changing to true for one run, this will do a "chown" recursive on home. # WARNING: this can increase considerably the start time depending your files, I suggest disable after fix. #FIXCHOWN=true # Advanced custom user #NXHOME=/data/nxhome #NXUID=431 #NXGID=433
systemd[Network] IPv6=true
systemd[Volume]
This is builded using personal intance of Forgejo, with WoodpeckerCI using buildah on podman rootless.
If you want to build your own image, the code is here
I am not associated with any of the tools used on or for this build.
Use at your own discretion and responsibility.
The letter at end of tag is not related to version of NoMachine, is my build correlative.
您可以使用以下命令拉取该镜像。请将 <标签> 替换为具体的标签版本。如需查看所有可用标签版本,请访问 标签列表页面。
来自真实用户的反馈,见证轩辕镜像的优质服务