Control: severity -1 minor Control: tag -1 wontfix Control: retitle -1 Docker.io breaks libvirt/qemu bridge network
Please review the package's postinst script to convince yourself that the Debian docker.io package does not ship any firewall rules: https://salsa.debian.org/go-team/packages/docker/-/blob/master/debian/docker.io.postinst?ref_type=heads However, the docker.io package does indeed manipulate iptables rules to provide container isolation. This is a well-known and documented feature at https://docs.docker.com/network/packet-filtering-firewalls/ The particular issue that you are experiencing is probably described best at https://serverfault.com/questions/963759/docker-breaks-libvirt-bridge-network. That article also container an detailed description on why this is actually a feature and how to work around it. On a personal note, consider installing the 'podman-docker' package instead of the 'docker.io' package, this might be sufficient depending on your use-case. I'm leaving this bug open as I'm not the regular maintainer of the docker.io package. Probably this should be documented in the README.md file or similar. Happy Holidays, -rt
