Closed alysak6075 closed 6 months ago
Thanks for opening your first issue here! Be sure to follow the relevant issue templates, or risk having this issue marked as invalid.
I have the same issue on qnap.
uname -r 5.10.60-qnap
Same issue here in a arm64
uname -a Linux CoreELEC 5.4.210 #1 SMP PREEMPT Mon Feb 19 10:40:19 CET 2024 aarch64 GNU/Linux
I solved it, using "legacy" version --> arm64v8-1.0.20210914-legacy
Looks like this here is the culprit: https://git.alpinelinux.org/aports/tree/main/iptables/iptables.post-upgrade?h=3.19-stable tl;dr alpine 3.19 switched to nftables under the hood so kernel support for nftables is required. Most newer kernels should support it, but it seems qnap and coreelec do not.
We'll evaluate internally how best to move forward.
My solution/workaround was to pin the version to "v1.0.20210914-ls22". That way there is no need for the "legacy" build.
For what it's worth, I had to s/iptables/iptables-nft
in wg0.conf in order to get the latest container version working on recent RedHat family system (Rocky Linux 9.4). Without this I was seeing behaviour as in https://github.com/linuxserver/docker-wireguard/issues/327, with properly setup /lib/modules mount.
Is there an existing issue for this?
Current Behavior
when there is a PostUp command iptables break:
[#] iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE iptables v1.8.10 (nf_tables): Could not fetch rule set generation id: Invalid argument
Expected Behavior
The tunnel should be up
Steps To Reproduce
add to Interface
PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
Environment
CPU architecture
x86-64
Docker creation
Container logs