# Fun fact of this pod:
# Using below sysctl fails due to SysctlForbidden
# However using privileged: true allows to set the forwarding
apiVersion: v1
kind: Pod
metadata:
  name: sysctl-priv
spec:
  containers:
    - name: bird
      image: "ungleich/bird:3.17-2.0.10"
      securityContext:
        privileged: true
      command:
        - /bin/sh
        - -c
        - "sleep 100000"
  securityContext:
    sysctls:
      # - name: "net.ipv4.conf.all.rp_filter"
      #   value: "0"
      # - name: "net.ipv4.conf.default.rp_filter"
      #   value: "0"
      # - name: "net.ipv6.conf.all.forwarding"
      #   value: "1"
      # - name: "net.ipv6.conf.default.forwarding"
      #   value: "1"
      # - name: "net.ipv4.ip_forward"
      #   value: "1"