From: "Stephen" <stephibb@amazon.co.uk>
To: meta-virtualization@lists.yoctoproject.org
Subject: Docker 20.10.3 breaks due to iptables v1.8.7 (legacy) incompatibility #meta-virtualization
Date: Thu, 30 Sep 2021 07:41:37 -0700 [thread overview]
Message-ID: <sR4y.1633012897405396850.uLez@lists.yoctoproject.org> (raw)
[-- Attachment #1: Type: text/plain, Size: 1699 bytes --]
Hello all!
The current meta-virtualisation docker is incompatible with the legacy v1.8.7 iptables.
Docker version 20.10.3, build 41b3ea7e47 http://layers.openembedded.org/layerindex/recipe/176817/
iptables v1.8.7 (legacy) https://git.yoctoproject.org/cgit.cgi/poky/plain/meta/recipes-extended/iptables/
level=info time=2021-09-30T08:58:56Z msg="TaskHandler: Sending task change: TaskChange: [arn:aws:ecs:eu-west-1:116589935960:task/GravitonID-ecs-ECSGra viton2DA545608-tzdG3bupgLcn/ef8d9ea15a434c298a9623551d39c6ab -> STOPPED, Known Sent: NONE, PullStartedAt: 2021-09-30 08:58:55.809460935 +0000 UTC m=+5 2315.765706001, PullStoppedAt: 2021-09-30 08:58:55.919351717 +0000 UTC m=+52315.875596782, ExecutionStoppedAt: 2021-09-30 08:58:56.159356552 +0000 UTC m=+52316.115601617, container change: arn:aws:ecs:eu-west-1:116589935960:task/GravitonID-ecs-ECSGraviton2DA545608-tzdG3bupgLcn/ef8d9ea15a434c298a9623 551d39c6ab web -> STOPPED, Reason CannotStartContainerError: Error response from daemon: driver failed programming external connectivity on endpoint e cs-GravitonIDecsTaskDefA2CA7A76-4-web-9eb9aba094eccadb1300 (db13dc1931d5be70284cac4de6899246035db8e5f9e0cf9ee3773000801a70b0): ( *iptables failed: ipta bles --wait -t nat -A DOCKER -p tcp -d 0/0 --dport 8080 -j DNAT --to-destination 172.17.0.2:3000 ! -i docker0: iptables v1.8.7 (legacy): unknown optio n \"--to-destination\"\nTry `iptables -h' or 'iptables --help' for more information.\n (exit status 2))* , Known Sent: NONE] sent: false" module=task_ha ndler_types.go
Possibly linked to this issue and nftables support? https://github.com/moby/moby/issues/38099
Any ideas for workarounds would be very much appreciated!
[-- Attachment #2: Type: text/html, Size: 2159 bytes --]
next reply other threads:[~2021-09-30 14:41 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-09-30 14:41 Stephen [this message]
2021-09-30 15:29 ` [meta-virtualization] Docker 20.10.3 breaks due to iptables v1.8.7 (legacy) incompatibility #meta-virtualization Bruce Ashfield
2021-09-30 15:39 ` Stephen
2021-09-30 16:43 ` Bruce Ashfield
2021-10-01 8:34 ` Stephen
2021-10-01 12:49 ` Bruce Ashfield
2021-10-01 13:42 ` Stephen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=sR4y.1633012897405396850.uLez@lists.yoctoproject.org \
--to=stephibb@amazon.co.uk \
--cc=meta-virtualization@lists.yoctoproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.