podman-pod-create --network slirp4netns is unsupported for root containers

Question

podman-pod-create --network slirp4netns is unsupported for root containers

zem opened this issue 5 years ago · 7 comments

I am not sure why that switch is simply missing, it is supported when you create an unpriviledged pod so why not be able to do slirp4netns as root?

Reasons:

I cant access a port from another container that is published on the host, I probably just dont get it yet how to resolve the IP address other pods elegantly out of the box.
Published ports on bridged networking do not bind on ipv6 slirp4netns does and translates.

Answer 1 · 2020-05-05T20:40:39.000Z

We originally only implemented a small subset of --network for pods (because of the way creating the infra container is handled, parsing needs to be very different for both, and rewriting the complicated parsing for --network was put off to later). This definitely sounds doable, though, it would just need some additions to the existing parsing logic.

Answer 2 · 2020-07-04T00:10:54.000Z

A friendly reminder that this issue had no activity for 30 days.

Answer 3 · 2020-09-10T17:44:35.000Z

@mheon Any update on this issue?

Answer 4 · 2020-09-10T18:03:00.000Z

No. Should be fairly simple to implement, but I've never found time.

Answer 5 · 2020-09-11T17:44:57.000Z

@ashley-cui PTAL

Answer 6 · 2020-09-21T14:04:39.000Z

Any container that joins the a slirp pod would also has slirp as the network mode, correct?

Answer 7 · 2020-09-21T15:33:59.000Z

The containers except the infra container should not be different - the containers, except the infra, will still join the infra container's network namespace.