Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Why is IPv6 disabled for rootless/slirp4netns containers? #10889

Closed
rugk opened this issue Jul 9, 2021 · 8 comments · Fixed by containers/common#744
Closed

Why is IPv6 disabled for rootless/slirp4netns containers? #10889

rugk opened this issue Jul 9, 2021 · 8 comments · Fixed by containers/common#744
Labels
locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. Question Issue is a question about Podman rootless slirp4netns Bug is in slirp4netns

Comments

@rugk
Copy link
Contributor

rugk commented Jul 9, 2021

The man page says:

enable_ipv6=true|false: Enable IPv6. Default is false. (Required for outbound_addr6).

I interpret that as such, that IPv6 is disabled by default and thus containers/ports bound can only be reached via IPv4. Is that true?

If so, why is that so? Given various initiatives to finally get to the day we use IPv6 only, I wonder why you do not enable this by default…?
@AkihiroSuda AkihiroSuda added Question Issue is a question about Podman rootless slirp4netns Bug is in slirp4netns labels Jul 9, 2021
@AkihiroSuda
Copy link
Collaborator

Probably safe to enable v6 by default, but not massively tested as v4 and there might be some vulns

@rhatdan
Copy link
Member

rhatdan commented Jul 9, 2021

This should probably be done in containers.conf then. That way users could have a way to customize.

@Luap99
Copy link
Member

Luap99 commented Jul 19, 2021

You can already set this in containers.conf with network_cmd_options = ["enable_ipv6=true"]

@AkihiroSuda How does slirp4netns behave when ipv6 is disabled in the kernel, will it fail or ignore the ipv6 setup?

@AkihiroSuda
Copy link
Collaborator

@AkihiroSuda How does slirp4netns behave when ipv6 is disabled in the kernel, will it fail or ignore the ipv6 setup?

Haven't tried

@github-actions
Copy link

A friendly reminder that this issue had no activity for 30 days.

@rhatdan
Copy link
Member

rhatdan commented Aug 24, 2021

@rugk interested in opening a PR containers/common to change the default?

rugk added a commit to rugk/common that referenced this issue Aug 24, 2021
@rugk
Enable IPv6 by default for slirp4netns
d88f148 
Fixes containers/podman#10889 in case that is the correct thing to change.
@rugk rugk mentioned this issue Aug 24, 2021
Closed
@rugk
Copy link
Contributor Author

rugk commented Aug 24, 2021
edited
Loading

Hmm, tried with containers/common#741, though I have no idea whether that is the correct thing to change… 😄

Feel free to change it by yourself, you likely better know what exactly to change.

@rhatdan
Copy link
Member

rhatdan commented Aug 25, 2021

You need to change default.go, we will carry on the conversation in the PR.

rhatdan added a commit to rhatdan/common that referenced this issue Aug 25, 2021
@rhatdan
Enable ipv6 for rootless users by default
d847cf5 
Fixes containers/podman#10889

Inspired by @rugk

Signed-off-by: Daniel J Walsh <[email protected]>
rhatdan added a commit to rhatdan/common that referenced this issue Aug 25, 2021
@rhatdan
Enable ipv6 for rootless users by default
3e8a01a 
Fixes containers/podman#10889

Inspired by @rugk

Signed-off-by: Daniel J Walsh <[email protected]>
@rhatdan rhatdan mentioned this issue Aug 25, 2021
Merged
rhatdan added a commit to rhatdan/common that referenced this issue Sep 12, 2021
@rhatdan
Enable ipv6 for rootless users by default
e68d944 
Fixes containers/podman#10889

Inspired by @rugk

Signed-off-by: Daniel J Walsh <[email protected]>
rhatdan added a commit to rhatdan/common that referenced this issue Sep 17, 2021
@rhatdan
Enable ipv6 for rootless users by default
4e098c6 
Fixes containers/podman#10889

Inspired by @rugk

Signed-off-by: Daniel J Walsh <[email protected]>
ankon added a commit to ankon/podman that referenced this issue Apr 15, 2022
@ankon
Fix the default for slirp4netns option enable_ipv6
662e896 
The default was changed by containers#10889
@ankon ankon mentioned this issue Apr 19, 2022
Closed
@github-actions github-actions bot added the locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. label Sep 21, 2023
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Sep 21, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. Question Issue is a question about Podman rootless slirp4netns Bug is in slirp4netns
Projects
None yet
Milestone
No milestone
4 participants
@rhatdan @AkihiroSuda @rugk @Luap99