Updating iptables and ping fails in a privileged application container

Solution In Progress - Updated -


  • Running ping command in a privileged application container (i.e running with privileged SCC) fails with the following error.
ping: icmp open socket: Operation not permitted
  • Error updating iptables:
 iptables v1.8.4 (legacy): can't initialize iptables table `nat': Permission denied (you must be root)
  Perhaps iptables or your kernel needs to be upgraded.


  • Red Hat Openshift Container Platform
    • 4.6+

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In