diff options
| -rw-r--r-- | passt.1 | 7 |
1 files changed, 6 insertions, 1 deletions
@@ -659,7 +659,12 @@ possible to bind sockets to foreign addresses. If the port forwarding configuration requires binding to port numbers lower than 1024, \fBpasst\fR and \fBpasta\fR will try to bind to them, but will fail if not running as root, or without the \fICAP_NET_BIND_SERVICE\fR Linux capability, see -\fBservices\fR(5) and \fBcapabilities\fR(7). +\fBservices\fR(5) and \fBcapabilities\fR(7). To grant the +\fICAP_NET_BIND_SERVICE\fR capability to passt, you can issue, as root: + +.RS +setcap 'cap_net_bind_service=+ep' $(which passt) +.RE .SS ICMP/ICMPv6 Echo sockets |