fix: add iptables package and simplify iptables rules
continuous-integration/drone/push Build is passing
continuous-integration/drone/push Build is passing
- Add iptables package in Dockerfile alongside iptables-legacy for compatibility. - Remove redundant `-m tcp` from iptables commands in set_gateway.sh since `-p tcp` already implies the TCP module when using `--dport`.
This commit is contained in:
gyurix
+1
-1
@@ -12,7 +12,7 @@ COPY --from=0 /root/.cargo/bin/boringtun-cli /usr/bin/boringtun
|
||||
|
||||
# replace the commented line with the following after service-exec go update
|
||||
#RUN apk add --no-cache tini wireguard-tools \
|
||||
RUN apk add --no-cache tini wireguard-tools iptables-legacy \
|
||||
RUN apk add --no-cache tini wireguard-tools iptables-legacy iptables \
|
||||
&& apk add --no-cache --virtual .build-deps libcap \
|
||||
&& setcap cap_net_admin+ep /usr/bin/boringtun \
|
||||
&& apk del --purge .build-deps \
|
||||
|
||||
Reference in New Issue
Block a user