Add reference

This commit is contained in:
Jip-Hop 2024-01-26 23:19:57 +01:00
parent bce6e3b43f
commit bf54fea9a1
1 changed files with 2 additions and 1 deletions

View File

@ -329,7 +329,8 @@ def start_jail(jail_name, check_startup_enabled=False):
# - privileged (to disable seccomp, set DevicePolicy=auto and add all capabilities) # - privileged (to disable seccomp, set DevicePolicy=auto and add all capabilities)
# - how to call the option to enable ip_forward and bridge-nf-call? # - how to call the option to enable ip_forward and bridge-nf-call?
# TODO: always add --bind-ro=/sys/module? Or only for privileged jails? # TODO: always add --bind-ro=/sys/module? Or only for privileged jails?
# https://manpages.debian.org/bookworm/manpages/sysfs.5.en.html
if config.get("docker_compatible") == "1": if config.get("docker_compatible") == "1":
# Enable ip forwarding on the host (docker needs it) # Enable ip forwarding on the host (docker needs it)
print(1, file=open("/proc/sys/net/ipv4/ip_forward", "w")) print(1, file=open("/proc/sys/net/ipv4/ip_forward", "w"))