Nope, I just tested and the rootful podman service doesn’t touch any iptables/firewall rules.
It uses what is called a “CNI”, container network interface, to manage container networking rather than just overwriting all the iptables rules like docker does.
I think podman by default does do that, but it’s easy to disable almost all of it, at least.
Nope, I just tested and the rootful podman service doesn’t touch any iptables/firewall rules.
It uses what is called a “CNI”, container network interface, to manage container networking rather than just overwriting all the iptables rules like docker does.