add opensnitch

Signed-off-by: Jess Frazelle <acidburn@microsoft.com>
2024-11-27 04:16:45 +01:00 · 2017-11-08 13:16:51 -05:00 · 2017-11-08 13:16:51 -05:00 · 4617918cbd
commit 4617918cbd
parent 64ea668765
2 changed files with 5 additions and 1 deletions
--- a/opensnitch/Dockerfile
+++ b/opensnitch/Dockerfile
@ -4,6 +4,7 @@
 #		-v /tmp/.X11-unix:/tmp/.X11-unix \
 #		-e "DISPLAY=unix${DISPLAY}" \
 #		--net host \
+#		--cap-add NET_ADMIN \
 #		--name opensnitch \
 #		r.j3ss.co/opensnitch
 #
--- a/opensnitchd/Dockerfile
+++ b/opensnitchd/Dockerfile
@ -2,11 +2,13 @@
 #	docker run  -d \
 #		--name=opensnitchd \
 #		--net host \
+#		--cap-add NET_ADMIN \
 #		r.j3ss.co/opensnitchd
 #
 FROM alpine:latest

 RUN apk add --no-cache \
+	iptables \
 	libcap \
 	libnetfilter_queue \
 	libnfnetlink \
@ -17,6 +19,7 @@ RUN apk add --no-cache \
 	tcpdump \
 	--repository https://dl-3.alpinelinux.org/alpine/edge/testing

+ENV XTABLES_LIBDIR "/usr/lib/xtables"
 ENV OPENSNITCH_VERSION master

 RUN buildDeps=' \
@ -40,4 +43,4 @@ RUN buildDeps=' \
 	&& apk del $buildDeps \
 	&& echo "Build complete."

-CMD ["/usr/bin/opensnitchd"]
+ENTRYPOINT ["/usr/bin/opensnitchd", "--debug"]