21d2575a95
- add missing runtime depency catatonit - removed SELinux variant, add config option for it instead, I do not believe we need variant of EVERY SELinux support capable software - add config option for iptables firewall setup in default cni network config, otherwise skip iptables part (part of nftables transition, use cni-plugins-nft for nftables fw support or better; forget about cni fw completely, instead use openwrt's own as that way your rules for containers do not disappear on firewall restart) Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
28 lines
502 B
Text
28 lines
502 B
Text
{
|
|
"cniVersion": "0.4.0",
|
|
"name": "podman",
|
|
"plugins": [
|
|
{
|
|
"type": "bridge",
|
|
"bridge": "cni-podman0",
|
|
"isGateway": true,
|
|
"ipMasq": true,
|
|
"hairpinMode": true,
|
|
"ipam": {
|
|
"type": "host-local",
|
|
"routes": [{ "dst": "0.0.0.0/0" }],
|
|
"ranges": [
|
|
[
|
|
{
|
|
"subnet": "10.88.0.0/16",
|
|
"gateway": "10.88.0.1"
|
|
}
|
|
]
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"type": "tuning"
|
|
}
|
|
]
|
|
}
|