On Tue, 13 Nov 2018 20:38:05 +0100 Michael Biebl <bi...@debian.org> wrote: > Source: docker.io > Version: 18.06.1+dfsg1-2 > Severity: normal > > Hi, > > firewalld switched its default backend from iptables to nftables > recently [1]. Unfortunately, this caused issues with libvirt and as > reported in [2], also docker. I don't use docker myself, so I'm only > relaying this information. > The main problem seems to be, that currently there is no integration > between docker and firewalld. Both manage firewall rules on their own. > As soon as nftables(firewalld) and iptables(docker) are mixed, the > result is a broken network setup. > Please consider forwarding this issue upstream. Best is probably if > docker upstream get's in touch with firewalld upstream to figure a > solution. >
Fwiw, I've uploaded firewalld 0.8.2-2 which now uses nftables as default backend. I'll leave it up to you to adjust the severity accordingly.
signature.asc
Description: OpenPGP digital signature