Skip to content

docs: add example for binding to privileged ports#1783

Open
tmchow wants to merge 1 commit intotraefik:masterfrom
tmchow:docs/1781-privileged-ports-example
Open

docs: add example for binding to privileged ports#1783
tmchow wants to merge 1 commit intotraefik:masterfrom
tmchow:docs/1781-privileged-ports-example

Conversation

@tmchow
Copy link
Copy Markdown

@tmchow tmchow commented Apr 2, 2026

Summary

Added an EXAMPLES.md section documenting how to bind Traefik to ports 80 and 443 using the NET_BIND_SERVICE capability.

Changes

New section in EXAMPLES.md covering:

  • Adding NET_BIND_SERVICE to securityContext.capabilities.add
  • Configuring ports.web and ports.websecure to use 80/443
  • Combining with hostPort for DaemonSet deployments

The examples keep the container running as non-root (no changes to podSecurityContext) while allowing privileged port binding, which is the recommended approach.

Testing

Documentation-only change. The values shown match the schema defined in values.yaml for ports, securityContext, and hostPort.

Fixes #1781

This contribution was developed with AI assistance (Claude Code).

@tmchow
docs: add example for binding to privileged ports
f8d0528 
Document how to configure the Helm chart to bind Traefik to ports
80 and 443 by adding the NET_BIND_SERVICE capability. Also covers
combining with hostPort for DaemonSet deployments.

Fixes traefik#1781
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Document how to bind on privileged ports

1 participant

@tmchow