unknown capability: "CAP_SYS_NET_ADMIN"

[escoffier]

after installing multi-networkpolicy-iptables, deamonset has err occured:

  Normal   Scheduled  9m55s                default-scheduler  Successfully assigned kube-system/multi-networkpolicy-ds-amd64-kzvzg to cluster03-master01-192.168.3.30-centos
  Normal   Pulling    13s (x4 over 9m55s)  kubelet            Pulling image "ghcr.io/k8snetworkplumbingwg/multi-networkpolicy-iptables:snapshot-amd64"
  Normal   Pulled     11s (x4 over 51s)    kubelet            Successfully pulled image "ghcr.io/k8snetworkplumbingwg/multi-networkpolicy-iptables:snapshot-amd64"
  Warning  Failed     11s (x4 over 51s)    kubelet            Error: Error response from daemon: invalid CapAdd: unknown capability: "CAP_SYS_NET_ADMIN"

I can't find CAP_SYS_NET_ADMIN from man page this link: https://man7.org/linux/man-pages/man7/capabilities.7.html

[s1061123]

Could you please replace 'SYS_NET_ADMIN' with 'NET_ADMIN' in deployment yaml and try it again?

[escoffier]

Thanks. Replacing 'SYS_NET_ADMIN' with 'NET_ADMIN' works