On Sat, 16 Dec 2023 14:54:32 +0100 Wolfgang Rohdewald <wolfg...@rohdewald.de>
wrote:
Package: docker.io
Version: 20.10.24+dfsg1-1+b3
Severity: critical
Justification: breaks unrelated software
Dear Maintainer,
* What led up to the situation?
installed docker.io with existing qemu guests in bridge mode, did not do
anything else.
This seems to be because docker includes some firewall rules which does not
play nice with existing firewall rules. For example, in my case I use
nftables, and after docker.io is installed, I had to
rmmod xt_conntrack xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo
xt_addrtype nft_compat br_netfilter
in order to make my bridge working again. It isn't only qemu guests which
are broken, it's everything connected to the host bridge besides the host
itself, - eg nspawn containers.
/mjt
