-
Notifications
You must be signed in to change notification settings - Fork 879
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
No DOCKER-USER chain with ip6tables: true
#2660
Comments
This is a blocker to my system. Can someone please provide the fix in the near future? An ETA would be much appreciated. |
with the ip6table option, this should be added |
at least until now (docker version 20.10.23) it is not yet implemented in the experimental ip6tables feature |
Do you know when this will be implemented? |
sorry I do not have further information about this topic. |
Is there a docker development forum where we can post questions like this one? |
Added with docker v23
|
Thanks a lot @cfouche3005 to confirm this! |
The weird thing it's not precisely said in the changelog (or I didn't find the right change on the changelog) |
it is actually mentioned in the release notes: Fix a failure to create the DOCKER-USER ip6tables chain. moby/moby#44845 |
Sorry, I am too dump and blind, thank for mentioning it. I think this issue can be closed |
no you're not blind. I would probably also not have seen it due to the long list of fixes, security and new features. |
I am using docker version 24 still I could not see the DOCKER-USER chain in ipv6 tables list
|
I'm using the setting
ip6tables: true
option with no problems so far.The only conceptual difference I found to IPv4 is that no
DOCKER-USER
chain gets created, which makes it hard to insert custom ip6tables rules at a defined location.dockerd --version
:Docker version 20.10.17, build a89b842
Is this chain still planned / slipped through / not planned for IPv6? I could not really find any discussion about it browsing the old merged/closed tickets regarding ip6tables.
The text was updated successfully, but these errors were encountered: