ufw-docker
ufw-docker copied to clipboard
chaifeng
To fix the Docker and UFW security flaw without disabling iptables
Hi, On a Ubuntu 21.04 Swarm cluster with all nosed ufw: active mode I get on start of the agent the following: `ERROR: UFW is disabled or you are not...
Hey @chaifeng Thanks for a great solution! I'm going for a zero-trust network so I want to drop all traffic by default (including from private network addresses). And then add...
Thanks for your approach, this is the cleanest I have found so far on this issue. I don't seem to understand the rules in their entirety, because I can't get...
I see that this solution works for a server with a public address, but how does it work if the server also has a private ip address lets say on...
Hi there! I just followed the provided instructions (modify `/etc/ufw/after.rules` and reload the service) and it doesn't work. I'm still able to access containers from the outside through `:`. Here...
This results in a very unpredictable behavior. I am just trying to block a port that is published by a docker container, supposed to be a very simple task. Seems...
Because of the question mark after capture closures in grep command, everything that has (existing in ufw list) INSTANCE_NAME, results as truthy value. For this reason when we try to...
Should the following setup work after installing ufw-docker?: 1. a database service runs on the host 2. a docker container on the same host needs access to the database (1)...
Hi. I can't get multiple ports to work for my docker swarm service. Whenever I try to add the 2nd rule it overrides the first rule and vice versa. I...
Hi, I installed a wiregaurd docker container which is running on UDP 51820:51820. Without any rule with ufw-docker the container and the wiregaurd connection are available. Thats not intended and...
