The firewall right now is managed by iptables (or iptables-nft) and ip6tables (or ip6tables-nft). Some common errors with their resolution are listed below.
This is common on Raspberry Pis.
If you encounter the error:
iptables v1.8.4 (legacy): can't initialize iptables table `filter': Table does not exist (do you need to insmod?)
You likely need to update your system with rpi-update, see #400 for more information.
Podman might need the extra capability NET_RAW added to Gluetun, on top of NET_ADMIN.
If you use Portainer to run the container and get the error:
2020-05-03T09:04:11.283Z ERROR failed executing "-P INPUT ACCEPT": iptables v1.8.3 (legacy): can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.: exit status 3```
This might be because Portainer does not set the --cap_add=NET_ADMIN successfully.
You might need to run the container without Portainer in this case. More information on #139.