diff options
Diffstat (limited to 'sysconf')
| -rw-r--r-- | sysconf/filecaps | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/sysconf/filecaps b/sysconf/filecaps index d24061e1..ea536eff 100644 --- a/sysconf/filecaps +++ b/sysconf/filecaps @@ -4,12 +4,15 @@ cap_net_admin=pe /sbin/ethtool cap_net_admin=pe /sbin/tc cap_net_admin=pe /bin/ip +# handles /sbin/iptables and /sbin/ip6tables symlink target +cap_net_admin=pe /sbin/xtables-legacy-multi +cap_net_admin=pe /sbin/xtables-nft-multi cap_net_admin=pe /usr/sbin/ipset cap_net_admin=pe /usr/sbin/conntrack cap_net_admin=pe /usr/sbin/arp # Raw sockets -cap_net_raw=pe /usr/bin/tcpdump +cap_net_raw=pe /usr/bin/tcpdump # Allow changes to system settings cap_net_admin,cap_sys_admin=pe /sbin/sysctl |