New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Port on local loopback not reachable over ipv6 when using dual-stack network #790
Comments
The kernel does not support ipv6 port forwarding via In order to support this we would need a user space proxy, please follow containers/podman#14491 instead for that. |
Thank you for your reply, at least now I understand a little more what's going on. Can this be considered a kernel bug? Or is this specific to the ipv6 implementation? Maybe this should be reported to the kernel developers? |
I don't have a specific link but my understanding is that is a deliberate decision to not support ipv6 loopback NAT in the kernel, it may not even be possible in the protocol? For ipv4 we have to explicitly enable this via the |
Thanks for the explanation. I did a little searching on the net, and found a discussion of the issue on ServerFault. The answer states that this is an RFC requirement:
I'm looking forward to the proxy implementation. Thank you for your work! |
I have a problem that has been bothering me for a long time.
I'm using dual stack networks with rootfull Podman and sometimes I need to bind some container ports to localhost. I don't get any errors when binding them, but I can't communicate over ipv6 with ports bound to both
[::1]
and127.0.0.1
.The same thing happens when I bind a port to both
0.0.0.0
and[::]
, the port on the local loopback is not reachable over ipv6.When I'm trying to use e.g.
curl
to communicate with such a port, it simply doesn't respond until the connection times out.It looks like this:
At the same time, communication over ipv4 is successfull:
The issue is similar to #636 and I was expecting Netavark 1.6.0 that have #638 fix to be able to solve it, but unfortunately not.
I am currently using CentOS Stream 9 and the latest versions of Podman and Netavark available in the distribution.
I'm willing to provide any logs and configuration files you might need.
The text was updated successfully, but these errors were encountered: