Skip to content

engine/security/rootless/troubleshoot: update "Network is slow"#25066

Open
AkihiroSuda wants to merge 1 commit into
docker:mainfrom
AkihiroSuda:rootless-29.5
Open

engine/security/rootless/troubleshoot: update "Network is slow"#25066
AkihiroSuda wants to merge 1 commit into
docker:mainfrom
AkihiroSuda:rootless-29.5

Conversation

@AkihiroSuda
Copy link
Copy Markdown
Contributor

@AkihiroSuda AkihiroSuda commented May 15, 2026
edited
Loading

Description

Updated "Network is slow" section:

  • VPNKit is no longer installed
  • docker run --net=host is available since v29.5
  • Add lxc-user-nic hints

Related issues or tickets

Follow-up to:

Reviews

  • Technical review
  • Editorial review
  • Product review

@AkihiroSuda AkihiroSuda requested a review from dvdksn as a code owner May 15, 2026 15:10
@netlify
Copy link
Copy Markdown

netlify Bot commented May 15, 2026
edited
Loading

Deploy Preview for docsdocker ready!

Name Link
🔨 Latest commit e848819
🔍 Latest deploy log https://app.netlify.com/projects/docsdocker/deploys/6a074c73626f10000888f6a6
😎 Deploy Preview https://deploy-preview-25066--docsdocker.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@github-actions github-actions Bot added area/engine Issue affects Docker engine/daemon area/security labels May 15, 2026
thaJeztah
thaJeztah reviewed May 15, 2026
View reviewed changes
Comment thread content/manuals/engine/security/rootless/troubleshoot.md
@AkihiroSuda
engine/security/rootless/troubleshoot: update "Network is slow"
e848819 
- VPNKit is no longer installed
- `docker run --net=host` is available since v29.5
- Add `lxc-user-nic` hints

Follow-up to PR 24645

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
@AkihiroSuda AkihiroSuda mentioned this pull request May 15, 2026
Closed
@pjonsson pjonsson mentioned this pull request May 16, 2026
Closed
dvdksn
dvdksn reviewed May 18, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@dvdksn dvdksn left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM but formatting is a bit wonky with the bold "headings", so I suggest we make these actual subheadings.

Image

Comment thread content/manuals/engine/security/rootless/troubleshoot.md
See [RootlessKit documentation](https://github.com/rootless-containers/rootlesskit/blob/v3.0.0/docs/network.md)
for more information.

**Workaround 1**
Copy link
Copy Markdown
Contributor

@dvdksn dvdksn May 18, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
**Workaround 1**
##### Workaround 1: bypass user-mode TCP/IP stack

Comment thread content/manuals/engine/security/rootless/troubleshoot.md
This is applicable since Docker Engine v29.5.
However, this requires the container to share the host network namespace, which may not be desirable for security reasons.

**Workaround 2**
Copy link
Copy Markdown
Contributor

@dvdksn dvdksn May 18, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
**Workaround 2**
##### Workaround 2: disable user-mode TCP/IP stack

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@thaJeztah thaJeztah thaJeztah left review comments

@dvdksn dvdksn dvdksn left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

area/engine Issue affects Docker engine/daemon area/security

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@AkihiroSuda @thaJeztah @dvdksn