mirror of
https://github.com/tailscale/tailscale.git
synced 2025-04-03 23:05:50 +00:00
2685484f26
Bumps Alpine 3.18 -> 3.19. Alpine 3.19 links iptables to nftables-based implementation that can break hosts that don't support nftables. Link iptables back to the legacy implementation till we have some certainty that changing to nftables based implementation will not break existing setups. Updates tailscale/tailscale#15328 Signed-off-by: Irbe Krumina <irbe@tailscale.com>
13 lines
714 B
Docker
13 lines
714 B
Docker
# Copyright (c) Tailscale Inc & AUTHORS
|
|
# SPDX-License-Identifier: BSD-3-Clause
|
|
|
|
FROM alpine:3.19
|
|
RUN apk add --no-cache ca-certificates iptables iptables-legacy iproute2 ip6tables iputils
|
|
# Alpine 3.19 replaces legacy iptables with nftables based implementation. We
|
|
# can't be certain that all hosts that run Tailscale containers currently
|
|
# suppport nftables, so link back to legacy for backwards compatibility reasons.
|
|
# TODO(irbekrm): add some way how to determine if we still run on nodes that
|
|
# don't support nftables, so that we can eventually remove these symlinks.
|
|
RUN rm /sbin/iptables && ln -s /sbin/iptables-legacy /sbin/iptables
|
|
RUN rm /sbin/ip6tables && ln -s /sbin/ip6tables-legacy /sbin/ip6tables
|