i do ‘things’ not ‘apps’ with VM’s.
my ‘WEB Services’ VM has the most stuff on it. it is a Debian VM that has 4 websites hosted, Emby, and Nextcloud. but the storage size of the VM itself is only 120GB for the boot OS and all the logs and the Databases for all that stuff. This VM was 8 years old, still based on BIOS in the VM but was running current Debian 11 via fairly rugular Apt upgrades.
i wanted to add a T1000 GPU i had laying around to Emby so that it could hardware transcode instead of using CPU resources.
I made another VM with Debian that booted via EFI, passed through the GPU, loaded the drivers, bare MariaDB, Emby, and Apache. Rsynced the sites and Emby cache, added the storage from the NAS in FSTAB, installed and reconnected Nextcloud to its pool and my AD server. done.
so lets break this down. could apache (or even each site) be a container? absolutely.
Could Emby, my Database host, and nextcloud, all be on containers? 100%
but, um, what would that gain me? it would add another layer of management for stuff that rarely needs any attention other than updates. i would need to update potentially multiple containers, or some container template, and deployment.
but what if an update to Apache breaks 1 website or does something unexpected? i just grab the last working VM from backup and load it, takes like 5 minutes and EVERYTHING works fine again. and this stuff does not change independently enough for a days lost consumption to matter.
And Apache virtual-hosts does any seperation for the sites that a container could do. plus i do not need to utilize any of those weird reverse proxy systems or dynamic DNS forwarders or load ballancers or blaahh blah blahs. i have proxmos connected to the network VIA a trunk port with VLAN support, my AD does permissions to the NAS, Users access the network with their credentials, and even if an attacker breaches this Web Services VM he has Read Access to all of the media that i allow access to for this server to begin with.
not to mention Crowdsec and other things on prem.
containers would be 1 more thing to managae, and gain me nothing that i have found useful.
this is just one instance of containers not creating a savings. my AD server and home assistant are single TINY VMs that i RARELY touch, sometimes the kernel on the AD server is down right old before i do anything about it. but this VM has passed through hardware and very specific network and software config that would be a pain to replicate via a container.