All Questions
69
questions
0
votes
0
answers
4
views
NAT table skipped for server replies running inside Docker container
I have a Docker container running on a vanilla setup which listens on port 9999:
docker run --rm -it -p 9999:9999 busybox nc -vvl -p 9999 0.0.0.0
I added a LOG rule to the POSTROUTING table on NAT in ...
0
votes
1
answer
44
views
Marking packets in iptables based on output interface
I have an unusual setup on my server. We have three outgoing ethernet ports, all connected to a single bridge interface that we split into two VLANs:
ip link add veth type bridge
ip link set veth ...
0
votes
0
answers
60
views
Docker container traffic through host iptables tproxy
Problem
Docker container network does not go through the host TPROXY-configured tunnel.
Setup
I have a TPROXY-supported proxy server running on my machine (listening on 127.0.0.1:8080). I configured ...
1
vote
2
answers
3k
views
Launching docker daemon in Ubuntu 22.04 LTS on WSL-2 fails because of iptables
I'm trying to run docker inside of Ubuntu 22.04.3 LTS running in WSL-2 on my Windows 10 machine.
I have followed the instructions here. But it's still not working, I am getting the following error ...
0
votes
1
answer
112
views
Outgoing docker packets not respecting routing rules
I have a private docker host (A) connected via a Wireguard tunnel to a public "router" in a cloud environment (B).
Wireguard:
(Docker Container)
eth0 172.17.0.2
|
docker0 172.17.0.1
(A) eth0 ...
0
votes
0
answers
41
views
Redirect all traffic from specific interface to Docker interface and container?
I have the following architecture:
AP1, AP2, AP3 and AP4 are devices which expose their own wireless access points with subnet 192.168.10.0/24 and can't be changed.
WLAN1, WLAN2, WLAN3 and WLAN4 are ...
0
votes
1
answer
118
views
docker, iptables and wireguard: what approach to pick?
Thanks to some help in a previous thread, I have managed to track down a specific issue, but I am not sure how to approach the potential fix.
To summarize the issue: docker on my server seems to break,...
0
votes
0
answers
84
views
Enable journalctl within Ubuntu container
I've got an Ubuntu 22.04 container running on a MacOS host. Inside the container, I'm fiddling with routing and would like to add some -j LOG rules to iptables to see where my packets are going. ...
0
votes
0
answers
55
views
How do i limit access to a port of a docker container with iptables
I have a docker host running a container on a bridged network, providing vpn access to a endpoint on multiple ports (one for each system on the remote network). Now i want to limit the access to that ...
0
votes
1
answer
95
views
Firewall : firewalld with docker open port for local service
I'm trying to open port for ssh on non-standard port like 12452, i used these commands and non of them worked
iptables -I INPUT -p tcp --dport 12452 -j ACCEPT
iptables -I OUTPUT -p tcp --dport 12452 -...
1
vote
0
answers
61
views
Filtering in INPUT chain didn't work for docker forwarded ports
I have a Linux server running a docker application, it exposes the 80 port inside docker to 20080 on the host.
The server has IP address 10.10.10.10 and I need to block 10.10.10.11 from accessing the ...
2
votes
1
answer
524
views
VPN To a Specific Docker Network
My goal is to find a solution that would alow me to host specific ports and services publically on a VPS while having other administrative UI's that might interact with said public services buttoned ...
2
votes
1
answer
3k
views
Understanding packet flow through iptables rules for docker container bridge network?
Background
I want to understand the relationships between docker container networks and iptables, and generally understand how packets flow from the eth0 interface (in a container), through the ...
0
votes
0
answers
96
views
What is this process causing my CPU utilization to peak to 100%?
I have used CentOS 7. I updated the CentOS version recently to install docker. Then this problem arose. I think that this problem is caused by the docker and I tried to remove it,
yum remove docker
...
1
vote
1
answer
359
views
Docker with firewall
I wanted to filter who can access my containers and I followed this article: https://docs.docker.com/network/iptables/#restrict-connections-to-the-docker-host
Now the access is restricted as wanted, ...