Skip to content

limayaml/defaults.go: allow automatic UDP forwarding #4054

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 18, 2025
Merged

limayaml/defaults.go: allow automatic UDP forwarding #4054

merged 1 commit into from
Sep 18, 2025
+3 −2

Conversation

@AkihiroSuda
Copy link
Member

@AkihiroSuda AkihiroSuda commented Sep 18, 2025

Fix #4040
@AkihiroSuda
limayaml/defaults.go: allow automatic UDP forwarding
d8feb58 
Fix issue 4040 Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
@AkihiroSuda AkihiroSuda added this to the v2.0.0 milestone Sep 18, 2025
This was referenced Sep 18, 2025
Closed
Closed
jandubois
jandubois approved these changes Sep 18, 2025
View reviewed changes
Copy link
Member

@jandubois jandubois left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, LGTM

I think the limitation to TCP was intentional, as most users would not want/need UDP forwarding, and by enabling it by default we may unintentionally create UDP listeners on the host, blocking the ports for other instances or applications.

It is easy enough to opt-in to UDP forwarding by adding a rule in the template; the defaults are meant to cover the common use cases.

I don't have strong opinions on this, but since it may affect older instances, I don't think it should be back-ported to Lima 1.x.
balajiv113
balajiv113 approved these changes Sep 18, 2025
View reviewed changes
Copy link
Member

@balajiv113 balajiv113 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍

At that time we didn't want to allow UDP for all so it was optin but it makes sense now
@jandubois jandubois merged commit c5d15cd into lima-vm:master Sep 18, 2025
62 of 63 checks passed
@jandubois
Copy link
Member

jandubois commented Sep 20, 2025

At that time we didn't want to allow UDP for all so it was optin but it makes sense now

I was having second thoughts right now because forwarding by default means the first instance you start would get UDP#53, and the one you start later that actually wants it won't.

But at least on my macOS 15.7 machine mDNSResponder is being started now automatically, even if you don't use vmnet, so nobody gets to forward the DNS port to the host anymore anyways, so I guess this doesn't matter.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

area/portfwd impact/changelog

4 participants

@AkihiroSuda @jandubois @paolomainardi @balajiv113