Podman Desktop on Mac uses weird user-pace IP stack which does direct socket all... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		betaby on Jan 16, 2025 \| parent \| context \| favorite \| on: Docker Desktop Broken on Mac OS Update for over a ... Podman Desktop on Mac uses weird user-pace IP stack which does direct socket allocations on the MAcOS host itself. Additionally, Podman Desktop on Mac always return on ICMP echo, try running `ping 5.5.5.5` or any other non-ping-able IP and see it yourself.

rgovostes on Jan 16, 2025 [–]

Can you elaborate on the direct socket allocations?

betaby on Jan 16, 2025 | [–]

You can see `tcp` sessions of the container using `netstat` on the host MacOS if you use Podman Desktop.

That's not the case if podman runs on a Linux VM on UTM for example. Additionally, ICMP behaves correctly in the later case.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact