-
Notifications
You must be signed in to change notification settings - Fork 40
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Can't start iptables bouncer with ipv6 setting turned on and DOCKER-USER chain enabled #346
Comments
You need to enable ipv6 support for docker, because Duplicate of #227 |
I see it now. I was confused because IPv6 was enabled and working in general, but the internal docker network has it disabled. I requested this to que software provider and they will look into enabling IPv6 support for the internal docker network(s). I'll update this issue if that solves it. |
I did run into the same issue. Maybe worth adding a note on the installation page of the firewall-bounce. |
I'm having trouble trying to start the iptables firewall bouncer with ipv6 enabled and these settings:
Ubuntu 22.04
UFW enabled and needed for the specific docker services
Docker
IPV6 available and configured
This is my crowdsec-firewall-bouncer.yaml config
If I leave the disable_ipv6 to false, the service fails to start
These are the bouncer's logs
If I set disable_ipv6 to true, the service starts fine, no mention of crowdsec6-blacklists in the logs.
If I disable the DOCKER-USER chain but leave disable_ipv6 to false in the bouncer's config I still get a few errors, but the bouncer starts.
The text was updated successfully, but these errors were encountered: