Rootless networking is still a mess with no IP source propagation and much slowe... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jacooper on March 15, 2023 \| parent \| context \| favorite \| on: Docker is deleting Open Source organisations - wha... Rootless networking is still a mess with no IP source propagation and much slower performance. So for most users docker with userNS-remapping is actually a better choice. Also systemd integration isn't a plus for me, I don't want to deal with SystemD just to have a container start on startup.

yrro on March 15, 2023 [–]

I think --network=pasta: helps with source IP preservation.

Regardless that has never bothered me since I'm only using podman or docker for local development...

jacooper on March 15, 2023 | [–]

Hmmm, pasta seems to solve all rootless networking issues...

https://github.com/containers/podman/pull/16141

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact