add sysctl net.ipv4.ip_unprivileged_port_start 53

Signed-off-by: Paco Xu <paco.xu@daocloud.io>

charts/coredns/values.yaml

@@ -87,8 +87,10 @@ isClusterService: true
 priorityClassName: ""
 
 # Configure the pod level securityContext.
-podSecurityContext: {}
-
+podSecurityContext:
+  sysctls:
+  - name: net.ipv4.ip_unprivileged_port_start
+    value: "53"
 # Configure SecurityContext for Pod.
 # Ensure that required linux capability to bind port number below 1024 is assigned (`CAP_NET_BIND_SERVICE`).
 securityContext: