Podman (Docker replacement)

[stevet224]

Hello,

Centos and Redhat have now moved away from Docker to Podman but i am unable to get CSF to work with podman. Docker used interface docker0 but podman uses a new interface for each container. e.g. veth11088f88

Any suggestions would be welcome.

I have tested the below config but with no luck.

Code: Select all

# podman network inspect podman
[
  {
    "cniVersion": "0.4.0",
    "name": "podman",
    "plugins": [
      {
        "bridge": "cni-podman0",
        "hairpinMode": true,
        "ipMasq": true,
        "ipam": {
          "ranges": [
            [
              {
                "gateway": "10.88.0.1",
                "subnet": "10.88.0.0/16"
              }
            ]
          ],
          "routes": [
            {
              "dst": "0.0.0.0/0"
            }
          ],
          "type": "host-local"
        },
        "isGateway": true,
        "type": "bridge"
      },
      {
        "capabilities": {
          "portMappings": true
        },
        "type": "portmap"
      },
      {
        "type": "firewall"
      },
      {
        "type": "tuning"
      }
    ]
  }
]
 

Thank you.

[stevet224]

I have been able to get it partly working using the below command but csf restart destroys the iptables podman creates.

sudo iptables -I CNI-FORWARD -p tcp ! -i cni-podman0 -o cni-podman0 --jump LOCALINPUT

[panomitrius]

I have been able to get it partly working using the below command but csf restart destroys the iptables podman creates.

sudo iptables -I CNI-FORWARD -p tcp ! -i cni-podman0 -o cni-podman0 --jump LOCALINPUT

This happens to me to, with a post script to run for configuring iptables for docker, after restarts those settings get lost and docker containers looses network connection.