search

wandera / jool-docker

Simple docker image to set up Jool 4.x in Stateful NAT64 mode.
MIT License
8 stars 1 forks source link

RULE_APPEND failed (No such file or directory) #17

Closed AAm-kun closed 1 week ago

AAm-kun commented 6 months ago

I am trying to run jool on docker. But I am getting the error below. What I am doing wrong ?

Os:

NAME="Linux Mint"
VERSION="21.1 (Vera)"
ID=linuxmint
ID_LIKE="ubuntu debian"
PRETTY_NAME="Linux Mint 21.1"
VERSION_ID="21.1"
HOME_URL="https://www.linuxmint.com/"
SUPPORT_URL="https://forums.linuxmint.com/"
BUG_REPORT_URL="http://linuxmint-troubleshooting-guide.readthedocs.io/en/latest/"
PRIVACY_POLICY_URL="https://www.linuxmint.com/"
VERSION_CODENAME=vera
UBUNTU_CODENAME=jammy

command ran: docker run --cap-add=NET_ADMIN --network host ghcr.io/wandera/jool


docker version:
Client: Docker Engine - Community
 Version:           25.0.3
 API version:       1.44
 Go version:        go1.21.6
 Git commit:        4debf41
 Built:             Tue Feb  6 21:13:09 2024
 OS/Arch:           linux/amd64
 Context:           default

Server: Docker Engine - Community
 Engine:
  Version:          25.0.3
  API version:      1.44 (minimum version 1.24)
  Go version:       go1.21.6
  Git commit:       f417435
  Built:            Tue Feb  6 21:13:09 2024
  OS/Arch:          linux/amd64
  Experimental:     false
 containerd:
  Version:          1.6.28
  GitCommit:        ae07eda36dd25f8a1b98dfbf587313b99c0190bb
 runc:
  Version:          1.1.12
  GitCommit:        v1.1.12-0-g51d5e94
 docker-init:
  Version:          0.19.0
  GitCommit:        de40ad0

Got this error:

Status: Downloaded newer image for ghcr.io/wandera/jool:latest
Error: Jool's socket family doesn't seem to exist.
(This probably means Jool hasn't been modprobed.)
Netlink error message: Object not found
Error: Jool's socket family doesn't seem to exist.
(This probably means Jool hasn't been modprobed.)
Netlink error message: Object not found
Error: Jool's socket family doesn't seem to exist.
(This probably means Jool hasn't been modprobed.)
Netlink error message: Object not found
Error: Jool's socket family doesn't seem to exist.
(This probably means Jool hasn't been modprobed.)
Netlink error message: Object not found
Warning: Extension JOOL revision 0 not supported, missing kernel module?
iptables v1.8.10 (nf_tables):  RULE_APPEND failed (No such file or directory): rule in chain PREROUTING
Warning: Extension JOOL revision 0 not supported, missing kernel module?
ip6tables v1.8.10 (nf_tables):  RULE_APPEND failed (No such file or directory): rule in chain PREROUTING
svenRelovsky commented 2 weeks ago

Hi, sorry for not getting to you earlier, you need to have a kernel module added on your host machine, could you verify it (I expect that based on This probably means Jool hasn't been modprobed)? Because as stated in README.md:

It still requires jool kernel module on the host machine

AAm-kun commented 1 week ago

Hello, yes. just checked. It was module issue. wasn't sure about why Jool needs to be installed in the host if running on container. Thank you.

kuldazbraslav commented 1 week ago

@AAm-kun Jool uses kernel modules. In container world, the kernel is shared and so are its modules. It's unfortunately not feasible to load the module (and unload it on termination) from the container without giving it full host privileges. Thus the limitation.