kolla-ansible/releasenotes/notes/disable-docker-iptables-bridge-493feb35cba4c405.yaml
Mark Goddard aec027c435 Disable Docker iptables and bridge networking by default
In I165199fc98fb98f227f2a20284e1bab03ef65b5b and
Ic745300b27e50132d80d03787fa4abfada2d0173 we provided flags to disable
Docker's control of iptables and bridge networking respectively. The
original behaviour was maintained for backwards compatibility, to allow
the patches to be backported.

This patch changes the default behaviour to disable the manipulation of
iptables and disabling bridge networking.

Related-Bug: #1849275
Related-Bug: #1848249

Change-Id: I4e8206f13a847ff79e06c36d22068597458b6c3d
2021-03-11 18:03:31 +00:00

10 lines
418 B
YAML

---
upgrade:
- |
Docker iptables manipulation and bridge networking are now disabled by
default. This avoids problems that may be caused by Docker settings the
default policy of the ``FORWARD`` chain in the ``filter`` table to
``DROP``. To revert to the previous behaviour, set
``docker_disable_default_iptables_rules`` to ``no``. This sets the default
of ``docker_disable_default_network``.