From 5d02f80d8e49bf1dad5e7638a3510ed7f5e782e2 Mon Sep 17 00:00:00 2001
From: ryardley <contact@rudiyardley.com>
Date: Mon, 25 Nov 2024 16:51:40 +0700
Subject: [PATCH] Don't use privelaged

---
 packages/ciphernode/net/tests/docker-compose.yaml | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/packages/ciphernode/net/tests/docker-compose.yaml b/packages/ciphernode/net/tests/docker-compose.yaml
index c9589501..20f8eb59 100644
--- a/packages/ciphernode/net/tests/docker-compose.yaml
+++ b/packages/ciphernode/net/tests/docker-compose.yaml
@@ -12,7 +12,9 @@ services:
       DIAL_TO: "/ip4/172.16.238.12/udp/9091/quic-v1"
       BLOCK_MDNS: ${BLOCK_MDNS:-false}
     entrypoint: ["/app/entrypoint.sh"]
-    privileged: true
+    cap_add:
+      - NET_ADMIN
+      - NET_RAW
 
   bob:
     build: 
@@ -27,7 +29,9 @@ services:
       DIAL_TO: "/ip4/172.16.238.12/udp/9091/quic-v1"
       BLOCK_MDNS: ${BLOCK_MDNS:-false}
     entrypoint: ["/app/entrypoint.sh"]
-    privileged: true
+    cap_add:
+      - NET_ADMIN
+      - NET_RAW
 
 
   charlie:
@@ -42,7 +46,9 @@ services:
       QUIC_PORT: 9091
       BLOCK_MDNS: ${BLOCK_MDNS:-false}
     entrypoint: ["/app/entrypoint.sh"]
-    privileged: true
+    cap_add:
+      - NET_ADMIN
+      - NET_RAW
 
 
 networks: