[pkg-go] Bug#1133420: podman: PublishPort= on ::1 doesn't work

Uwe Kleine-König ukleinek at debian.org
Mon Apr 13 11:45:04 BST 2026 

Package: podman
Version: 5.4.2+ds1-2+b2
Severity: normal
X-Debbugs-Cc: ukleinek at debian.org

Hello,

with

	root at happy:~# cat /etc/containers/systemd/cloud.pod
	[Pod]
	PodName=cloud
	PublishPort=[::1]:9000:9000
	[Install]
	WantedBy=multi-user.target default.target
	root at happy:~# cat /etc/containers/systemd/nextcloud.container
	[Container]
	ContainerName=nextcloud
	Image=docker.io/nextcloud:fpm
	Pod=cloud.pod
	Volume=/srv/nextcloud:/var/www/html:Z
	Volume=/etc/localtime:/etc/localtime:ro

I get

	root at happy:~# ss -ltpn
	State  Recv-Q Send-Q                           Local Address:Port  Peer Address:PortProcess
	...
	LISTEN 2      4096                                     [::1]:9000          [::]:*    users:(("conmon",pid=937,fd=5))                                             
	...

but I cannot connect to the respective processes in the container
according to strace attached to the php-fpm processes.

	podman run -it nextcloud bash
	apt update
	apt install netcat-openbsd
	netcat ::1 9000

works fine however.

Also if I change `[::1]` to `127.0.0.1` in
/etc/containers/systemd/cloud.pod it works as expected.

I cannot reproduce the issue using

	podman pod create --publish '[::1]:9000:9000' test
	podman run --pod test docker.io/nextcloud:fpm

as user.

Best regards
Uwe

-- System Information:
Debian Release: 13.4
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: armhf (armv7l)

Kernel: Linux 6.12.74+deb13+1-armmp (SMP w/2 CPU threads)
Kernel taint flags: TAINT_WARN
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages podman depends on:
ii  conmon                           2.1.12-4
ii  crun                             1.21-1
ii  golang-github-containers-common  0.62.2+ds1-2
ii  init-system-helpers              1.69~deb13u1
ii  libc6                            2.41-12+deb13u2
ii  libgpgme11t64                    1.24.2-3
ii  libseccomp2                      2.6.0-2
ii  libsqlite3-0                     3.46.1-7+deb13u1
ii  libsubid5                        1:4.17.4-2
ii  netavark                         1.14.0-2

Versions of packages podman recommends:
ii  buildah             1.39.3+ds1-1+b7
ii  ca-certificates     20250419
ii  catatonit           0.2.1-2+b12
ii  containers-storage  1.57.2+ds1-1+b2
pn  criu                <none>
ii  dbus-user-session   1.16.2-2
pn  libcriu2            <none>
ii  passt               0.0~git20250503.587980c-2+deb13u1
ii  slirp4netns         1.2.1-1.1
ii  uidmap              1:4.17.4-2

Versions of packages podman suggests:
ii  containernetworking-plugins  1.1.1+ds1-3+b17
pn  docker-compose               <none>
ii  iptables                     1.8.11-2

-- no debconf information

More information about the Pkg-go-maintainers mailing list