Should we be reverting iptables to iptables-legacy for eoan?
Julian Andres Klode
julian.klode at canonical.com
Tue Sep 10 16:12:16 UTC 2019
Hi folks,
it turns out that lxd is broken by iptables now using the nft
based stuff, because lxd is still using the legacy one from
inside the snap.
This provides a terrible experience because networking in lxd
is not working at all once you enable ufw.
I'd suggest we increase the priority of iptables-legacy for eoan,
so that it is the default, and move the switch to xtables-nft-based
one to next release.
This will allow us to have working lxd networking, and gives
the lxd team some breathing room.
--
debian developer - deb.li/jak | jak-linux.org - free software dev
ubuntu core developer i speak de, en
More information about the ubuntu-devel
mailing list