Merge "Add iptables runonce script" into release-day

commit: 2048cc28714f405fed10a9350a085e50246a36cc [log] [tgz]
author: June Tate-Gans <jtgans@google.com> Wed Oct 16 03:57:56 2019 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Wed Oct 16 03:57:56 2019 +0000
tree: de112cf857e7fb8166157d0a3bcf9e855133cf7e
parent: e2b9932b267279bd33981ffbda07d81fa4417951 [diff]
parent: cd6ee9a11e54ac2603d2349b99ef4a5c17fed9db [diff]
diff --git a/etc/runonce.d/97-iptables b/etc/runonce.d/97-iptables
new file mode 100755
index 0000000..3de3d04
--- /dev/null
+++ b/etc/runonce.d/97-iptables

@@ -0,0 +1,5 @@
+#!/bin/bash
+
+# Docker doesn't play nicely with nftables. Use iptables-legacy instead.
+sudo update-alternatives --set iptables /usr/sbin/iptables-legacy
+sudo update-alternatives --set ip6tables /usr/sbin/ip6tables-legacy
commit	2048cc28714f405fed10a9350a085e50246a36cc	[log] [tgz]
author	June Tate-Gans <jtgans@google.com>	Wed Oct 16 03:57:56 2019 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Wed Oct 16 03:57:56 2019 +0000
tree	de112cf857e7fb8166157d0a3bcf9e855133cf7e
parent	e2b9932b267279bd33981ffbda07d81fa4417951 [diff]
parent	cd6ee9a11e54ac2603d2349b99ef4a5c17fed9db [diff]