You signed in with another tab or window.Reload to refresh your session.You signed out in another tab or window.Reload to refresh your session.You switched accounts on another tab or window.Reload to refresh your session.Dismiss alert
## Runtime & Permission Requirements for Running the Boundary in Docker
107
+
108
+
This section describes the Linux capabilities and runtime configurations required to run the Agent Boundary inside a Docker container. Requirements vary depending on the OCI runtime and the seccomp profile in use.
109
+
110
+
### 1. Default `runc` runtime with `CAP_NET_ADMIN`
111
+
112
+
When using Docker’s default `runc` runtime, the Boundary requires the container to have `CAP_NET_ADMIN`. This is the minimal capability needed for configuring virtual networking inside the container.
113
+
114
+
Docker’s default seccomp profile may also block certain syscalls (such as `clone`) required for creating unprivileged network namespaces. If you encounter these restrictions, you may need to update or override the seccomp profile to allow these syscalls.
### 2. Default `runc` runtime with `CAP_SYS_ADMIN` (testing only)
119
+
120
+
For development or testing environments, you may grant the container `CAP_SYS_ADMIN`, which implicitly bypasses many of the restrictions in Docker’s default seccomp profile.
121
+
122
+
-The Boundary does not require `CAP_SYS_ADMIN` itself.
-Granting `CAP_SYS_ADMIN` enables the Boundary to run without modifying the seccomp profile.
125
+
126
+
⚠️ Warning:`CAP_SYS_ADMIN`is extremely powerful and should not be used in production unless absolutely necessary.
127
+
128
+
### 3. `sysbox-runc` runtime with `CAP_NET_ADMIN`
129
+
130
+
When using the `sysbox-runc` runtime (from Nestybox), the Boundary can run with only:
131
+
132
+
-`CAP_NET_ADMIN`
133
+
134
+
The sysbox-runc runtime provides more complete support for unprivileged user namespaces and nested containerization, which typically eliminates the need for seccomp profile modifications.
135
+
136
+
## Docker Seccomp Profile Considerations
137
+
138
+
Docker’s default seccomp profile frequently blocks the `clone` syscall, which is required by the Boundary when creating unprivileged network namespaces. If the `clone` syscall is denied, the Boundary will fail to start.
139
+
140
+
To address this, you may need to modify or override the seccomp profile used by your container to explicitly allow the required `clone` variants.
141
+
142
+
You can find the default Docker seccomp profile for your Docker version here (specify your docker version):