Running L2TP/IPsec Docker container on "--privileged" flag can bring big trouble to host system

teddysun / across

Across the Great Wall we can reach every corner in the world

https://teddysun.com

Apache License 2.0

4.97k stars 2.22k forks source link

Running L2TP/IPsec Docker container on "--privileged" flag can bring big trouble to host system #61

Open obesbash opened 4 years ago

obesbash commented 4 years ago

If there any other options for running container without "--privileged" flag? Maybe add some options like --cap-add NET_ADMIN or --sysctl net.ipv4.ip_forward=1?