diff options
| author | Stefano Brivio <sbrivio@redhat.com> | 2021-10-12 23:03:01 +0200 |
|---|---|---|
| committer | Stefano Brivio <sbrivio@redhat.com> | 2021-10-14 13:15:12 +0200 |
| commit | d5c887de877d994951fd9af89586e29544969c1a (patch) | |
| tree | 153f2bb6c1d03e6910c9374cda215f3b8bc4a511 /passt.1 | |
| parent | 4869d309e122445ee43ab79e00bd3b1dfa9d9275 (diff) | |
| download | passt-d5c887de877d994951fd9af89586e29544969c1a.tar passt-d5c887de877d994951fd9af89586e29544969c1a.tar.gz passt-d5c887de877d994951fd9af89586e29544969c1a.tar.bz2 passt-d5c887de877d994951fd9af89586e29544969c1a.tar.lz passt-d5c887de877d994951fd9af89586e29544969c1a.tar.xz passt-d5c887de877d994951fd9af89586e29544969c1a.tar.zst passt-d5c887de877d994951fd9af89586e29544969c1a.zip | |
doc: Add to man page tip to grant passt the CAP_NET_BIND_SERVICE capability
Signed-off-by: Stefano Brivio <sbrivio@redhat.com>
Diffstat (limited to 'passt.1')
| -rw-r--r-- | passt.1 | 7 |
1 files changed, 6 insertions, 1 deletions
@@ -659,7 +659,12 @@ possible to bind sockets to foreign addresses. If the port forwarding configuration requires binding to port numbers lower than 1024, \fBpasst\fR and \fBpasta\fR will try to bind to them, but will fail if not running as root, or without the \fICAP_NET_BIND_SERVICE\fR Linux capability, see -\fBservices\fR(5) and \fBcapabilities\fR(7). +\fBservices\fR(5) and \fBcapabilities\fR(7). To grant the +\fICAP_NET_BIND_SERVICE\fR capability to passt, you can issue, as root: + +.RS +setcap 'cap_net_bind_service=+ep' $(which passt) +.RE .SS ICMP/ICMPv6 Echo sockets |