I "think" we figured out the problem. A bunch of us on the podman team
started hacking on it (thanks to Matt, Nalin, Matt, Brent, etc). I think we
have a work around for now. We're still determining the longer term
solution. I commented in the Stackoverflow, but copying here for ease:
I just tried this on RHEL 8 and I was able to reproduce this issue. We also
figured out the issue (I think). Try the following:
sudo sysctl -w net.ipv4.ping_group_range="0 2147483647"
You might be being limited by the group range and /etc/subuid /etc/subgid:
I'm not sure what the long term solution is yet, but if this works, you can
likely fix it with sysctl for now.
On Wed, Oct 20, 2021 at 2:12 PM Gerben Venekamp <venekamp(a)gmail.com> wrote:
I am trying to setup networking in rootless containers. What I would
to have is both internal, i.e. container to container, and external, e.g.
ping 18.104.22.168, inside a single container. I get internal working as well as
external, however never both at the same time within a single container. I
have raised this question on stackoverflow as well. The question on
stackoverflow can be found at:
Podman mailing list -- podman(a)lists.podman.io
To unsubscribe send an email to podman-leave(a)lists.podman.io
18 ways to differentiate open source products from upstream suppliers:
Product Management - Containers, Red Hat Enterprise Linux & OpenShift