From e2a7d3270d9c69beb56eccc7b819a1b08b6aaf66 Mon Sep 17 00:00:00 2001
From: Lucian Petrut <lpetrut@cloudbasesolutions.com>
Date: Fri, 10 Jan 2025 12:08:10 +0000
Subject: [PATCH] Fix docker iptables workaround

* ipv6 may be unavailable, so we'll ignore errors
* log the host ips and routes
---
 .github/actions/install-lxd/action.yaml | 14 ++++++++++----
 1 file changed, 10 insertions(+), 4 deletions(-)

diff --git a/.github/actions/install-lxd/action.yaml b/.github/actions/install-lxd/action.yaml
index ee38cd5461..31cb7aa842 100644
--- a/.github/actions/install-lxd/action.yaml
+++ b/.github/actions/install-lxd/action.yaml
@@ -32,11 +32,17 @@ runs:
     - name: Apply Docker iptables workaround
       shell: bash
       run: |
+        set -x
+        ip a
+        ip r
+
         bridges=('lxdbr0' 'dualstack-br0' 'ipv6-br0')
         for i in $bridges
         do
-            sudo iptables  -I DOCKER-USER -i $i -j ACCEPT
-            sudo ip6tables -I DOCKER-USER -i $i -j ACCEPT
-            sudo iptables  -I DOCKER-USER -o $i -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-            sudo ip6tables -I DOCKER-USER -o $i -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
+          set +e
+          sudo iptables  -I DOCKER-USER -i $i -j ACCEPT
+          sudo ip6tables -I DOCKER-USER -i $i -j ACCEPT
+          sudo iptables  -I DOCKER-USER -o $i -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
+          sudo ip6tables -I DOCKER-USER -o $i -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
+          set -e
         done