X20 Edge - can't initialize iptables for docker setup

Emre_Bayazitoglu · July 9, 2025, 5:55am

We have a Docker application that is supposed to run on the X20Edge with Software Image Version 1V8.2. As we conduct the step of installing the dependencies of the Python application into a Docker container the following error message is generated:

Error response from daemon: failed to set up container networking: failed to create endpoint edgedevice-backend-1 on network edgedevice_default: Unable to enable DIRECT ACCESS FILTERING - DROP rule:  (iptables failed: iptables: iptables v1.8.9 (legacy): can't initialize iptables table `raw': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.

What we’ve tried so far:

kernel update
using the host network driver by setting –net=host

The downloads ran through by disabling the iptables in the daemon.json. However, according to my research, this disables port mapping, which our application depends on.

Right now I am not completely sure how to proceed on this issue, as disabling iptables is not an option. This leads me to my question: What is the recommended way to enable full Docker networking support, including port mapping, on the X20Edge platform?

tomas.miculka · July 9, 2025, 8:23am

Hi @Emre_Bayazitoglu,
If gets it corectly you have localy build container.
Is this build on Edge?
Are you using both network cards, or just one ?

Is it nessesary to use network=host, if so please try --network=host.

Could you please provide example of run command?

Emre_Bayazitoglu · July 9, 2025, 8:52am

Hi @tomas.miculka,

thanks for the fast response!

eth0 is assigned a static ip. We use this port within the docker application for communication purposes. eth1 is the port connected to the internet to pull the dependencies from docker and pip registries.

sudo docker compose up --build

is used to build the containers on the edge device (as we have internet access).

tomas.miculka · July 9, 2025, 10:40am

If you are using both Ethernet cards, there could be an issue with routing, because by default, only one default iptable is set. More about it here:

Here is an examples of a docker compose file from our colleagues:

github.com/BRDK-GitHub/X20Edge-RecipeManagment

docker/compose.yaml

main

# Github repo:
# https://github.com/BRDK-GitHub/X20Edge-RecipeManagment

services:
  RecipeManagment:
    image: piekutt/webserver
    ports:
      - "8070:80"
    networks:
      - front-tier
      - back-tier
    platform: linux/arm64 # Specify platform explicitly

  Pocketbase:
    image: manchtools/open-ticket-pocketbase
    ports:
      - "8090:8090"
    networks:
      - back-tier
    environment:

This file has been truncated. show original

Maybe this can help as well:
https://forums.docker.com/t/selecting-host-network-for-docker-compose-build/136303

Emre_Bayazitoglu · July 11, 2025, 9:37am

I upgraded to software image (1V8.3.1). At the moment it seems to have fixed the issue.

I’m not sure where exactly the problem arose, but for the moment it works.

Topic		Replies	Views
Innovation 2025 : X20 Edge - X20 meets IoT Share Info & Ideas x20 , innovation_2025	22	1032	June 10, 2025
X20 Edge - How to load new DEBIAN image? Ask Questions x20 , iot	7	120	May 20, 2025
Can't update admin password on x20 edge Ask Questions x20 , iot	7	100	June 12, 2025
Innovation 2025: X20 Edge Meets IoT \| Unboxing by Automation Geeks Announcements news	2	197	March 24, 2025
X20CP0420 - Using Ethernet and Modbus TCP Ask Questions plc	1	54	July 1, 2025

X20 Edge - can't initialize iptables for docker setup

Related topics