All Questions
47
questions
0
votes
1
answer
52
views
Linux Docker compose container cannot ping another bridged Docker container
Overview
I need a Docker Compose zabbix host to ping a host on a containerlab docker network.
These two Docker networks run under a linux Docker host machine as below... This information comes from ...
0
votes
0
answers
29
views
Docker container not recieving packets from specific port
So I have an instance in Oracle cloud, running OL7. In that instance I'm trying to setup some docker containers with multiple servers. These container should be reachable from the outside on different ...
3
votes
1
answer
529
views
Access remote SSH tunnel from inside docker container
I have a webserver on my MacBook in my home network behind a NAT, serving on port 80.
I also have a publicly accessible server running Ubuntu, from which I want to access my local webserver, so I open ...
0
votes
1
answer
57
views
Pterodactyl Docker Pulling times out when using iptables
When I'm using iptables to block incoming traffic by either:
- iptables -A INPUT -j REJECT
or
- iptables -P INPUT DROP
It times out and says nothing and just finish pulling. (takes 1 minute).
My ...
0
votes
1
answer
49
views
Docker exposed ports available from host, but not from other machines in iptables restricted container
I have custom container with VPN inside, with following iptables rules inside container:
# Flush all existing rules and chains
iptables -F
iptables -X
# Set default policies to DROP
iptables -P INPUT ...
1
vote
0
answers
129
views
How do I limit access to a port of a docker container with iptables?
I have a docker host running a container on a bridged network, providing vpn access to a endpoint on multiple ports (one for each system on the remote network). Now i want to limit the access to that ...
2
votes
0
answers
132
views
Route mail traffic across wireguard tunnel
I'm setting up a mail server (mailcow) and this is the current infrastructure:
VPS wireguard ip tables
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
...
1
vote
0
answers
104
views
Port forwarding from within container
For the past two years I have been using Windscribes port forwarding service to access a few services within my LAN from an external IP. Because I am behind a NAT this has been the best solution and ...
1
vote
0
answers
839
views
How to add WireGuard container to internal Docker network to add internet connectivity?
I have two Docker networks:
public which is a normal bridge network with access to the host upstream network
private which is a bridge, internal: true and hosts a fleet of containers
networks:
...
1
vote
2
answers
7k
views
What is the correct way to restrict access to Docker containers to only allow sources on LAN
I've been trying to find a way to ensure containers selectively are only accessible from the LAN that the (Linux) docker host is part of. I've seen this question asked/answered on Reddit, Stack, and ...
0
votes
1
answer
2k
views
How to route traffic between 2 interfaces via iptables?
Introduction
The primary topic of the question is feeding DUT (Device Under Test) system via traffic generator (t-rex).
t-rex can be used from docker image - here is a doc page. The docker image ...
0
votes
1
answer
708
views
Docker daemon not starting on embedded
I am unable to run docker daemon on my embedded device using a custom Linux distro (Yocto based). The initialization ends with the following error:
failed to start daemon: Error initializing network ...
0
votes
0
answers
2k
views
docker without sudo on WSL2
According to https://docs.docker.com/engine/security/rootless/ running dockerd-rootless-setuptool.sh install will let you run Docker without sudo, however, when I try to do it, I get this error:
[...
1
vote
0
answers
1k
views
Docker networking not working with bridged host interfaces
Here's the setup: (docker host is in between to monitor traffic via ntopng)
Router <---> Docker Host <---> PC
<192.168.1.1> <192.168.1.20> ...
0
votes
0
answers
2k
views
Allow Docker Container with MacVLAN network to access Wireguard connected remote
I do have two servers:
Server A: a local NAS running RHEL 8.5 (5.17.1 kernel - so it has native wireguard support); local IP 192.168.1.1
Server B: a VPS with debian 11.3 (5.10.0 kernel - also has ...