ufw-docker
ufw-docker copied to clipboard
chaifeng
To fix the Docker and UFW security flaw without disabling iptables
Hello, Is there a way to allow the exposed ports insteed of the container ports? I know, I could just allow the specific port on a specific IP. But I...
To allow responses for outbound connections initiated by internal containers you suggest the following rules: ``` -A DOCKER-USER -j DROP -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -d 192.168.0.0/16 -A...
After setting it up like described and like I have don so many times before, all the Ports from Docker are still reachable without allowing them. Looks like something broke.
Hi, I have problem starting _ufw-docker-agent_ service in swarm mode on Debian 12 bookworm. ``` # docker logs -f ufw-docker-agent.i0spp3mykizu77bimo65xwr02.vm1271int13yib48zdufmfydn iptables v1.8.7 (nf_tables): chain `DOCKER-INGRESS' in table `nat' is incompatible,...
## docker0 IP :172.17.0.1 ## 被访问容器 - 端口映射 6665:6379 ## 访问数据的容器 访问形式 ``` redis-cli -h 172.17.0.1 -p 6665 ``` 结果 **connection refused** ## 按照教程开放 6379 端口 ``` sudo ufw allow...
Thank you for this tool! Very useful and easy to use, but I there's one tiny problem. I have opened 80 and 443 ports for my container: ``` sudo ufw-docker...
      之前可以,重启了docker以后就不行了,现在会阻碍正常规则
Hi, I have ufw installed with no extra configuration. I tried to follow the instructions. According to https://github.com/chaifeng/ufw-docker/#how-it-works, > The following rules allow the private networks to be able to...
Hi. It works almost like I want and as you said. I have only two issues. May be something else has changed in iptables. I can't access the host itself...
