Bridged Networking as Non-root


Hey everyone, I’m running into some trouble with running VMs configured to use bridged networking as a non-root user. Basically, qemu gives me an error telling me that it does not have permissions to create a tap interface on my bridge.

I did some research, and it appears that there was a kernel patch a while back that made a change to the creation of TUN/TAP devices, so that creating such a device now requires root privileges (or, more specifically, the CAP_NET_ADMIN Posix capability). Unfortunately, I couldn’t find any good work-arounds to create the tap interface as non-root.

I’d really like to be able to start up a VM with bridged networking through virsh as a non-root user. Is there a known solution to this problem? Is there any way to do it using virsh?

Any tips or insight would be very much appreciated.