search cancel

Docker software does not run on Linux when Endpoint Protection autoprotect service is running

book

Article ID: 163091

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

Docker is open-source virtualization software for Linux, typically used to run virtual processes in software "containers" that are isolated from the host OS and other processes. When SEP (Symantec Endpoint Protection) is also installed on the host OS and its autoprotect service is running, Docker containers will not run.

Example error text:

Error response from daemon: Cannot start container 1db540ec0a8f4b88e49df80ae5f68487b1d5c7c0a09c3eb6fb2a3cf2e9b929a9: failed sandbox add: failed to add interface veth61e9fd7 to sandbox: failed in prefunc: failed to set namespace on link "veth61e9fd7": invalid argument
 

Cause

Docker 1.6.x can work with Auto-Protect, but Docker 1.7.x cannot work with AP of older versions.

Resolution

This issue has been resolved in SEP 12.1 RU6 MP5.  See New fixes and component versions in Symantec Endpoint Protection 12.1.6 MP5 (FIX ID: 3869840)

With older version, SEP autoprotect must be stopped or uninstalled before Docker containers will run.

To obtain the latest version see Download the latest version of Symantec Endpoint Protection