Packet capture in unprivileged containers

patrickli

New Member
Oct 24, 2022
10
0
1
I'm trying to run a network analysis tool (ntopng) in an unprivileged container. I assigned it 2 NICs, one for normal network communication and another is mirroring traffic from a router running in QEMU.

ntopng fails to open the mirror network device. I tried to add
Code:
lxc.cap.keep: net_raw net_admin
in the lxc config but the container fails to start.

Is there a way to make it work without making the container priviledged?

Thanks.