Should be 'tcp' or 'udp'"Įcho "Error: Wrong type of CIDR host/network address:$addr. '1234'"Įcho "ERROR: Wrong 'type' of port:$ptype. docker run -rm -it -p 465:25 python:3.6 python3 -m rver 25 If you look at your full firewall config with iptables-save youll see a bunch of NAT rules. $iptables -A DOCKER-USER -i $ext_if -s $addr -p $ptype -dport $port -j RETURNĮcho "ERROR: Wrong port number:$port. Install iptables-docker The first step is to clone this repository Local install (sh) NOTE this kind of install use a static file (src/iptables-docker.sh). Then in the container set up iptables & sudo: apt update -y apt-get install iptables sudo -y. If $(echo $ptype | egrep -q 'tcp|udp') then docker run -cap-addNETADMIN -it ubuntu:16.04. Syntax: /root/bin/docker-Firewall.sh /32 fi The script will always delete all the rules inside the DOCKER-USER Chain before it does anything, meaning, either fill in the defined rules or revert to original Docker setup status: Letting pass everything through. The only thing to do is to fill in the variables in the User Definable variables area of the script and run it. Reading the comments in the script does gives an idea of how it works.
docker runSince we can’t protect docker advertised ports on docker using a normal firewall like UFW against attacks from Internet, a script has been written to do just that. Make sure you can run Docker as non-root user: sudo docker run -rm.
0 kommentar(er)
