@treechicken@lemmy.world to Programmer Humor@lemmy.ml • 2 years agoFirewalllemmy.worldimagemessage-square77fedilinkarrow-up1737arrow-down118
arrow-up1719arrow-down1imageFirewalllemmy.world@treechicken@lemmy.world to Programmer Humor@lemmy.ml • 2 years agomessage-square77fedilink
minus-squareDerpgonlinkfedilink2•2 years agoUFW does work with Docker, but requires some tweaking. IIRC you have to disallow Docker to modify IPTables and then add a rule to forward all traffic to the Docker network of your choice. It’s a little finicky but works.
minus-square@JasonDJ@lemmy.ziplinkfedilink1•2 years agoBut…why? Project Calico is designed for segmenting network traffic between kubernetes workloads. Right tool for the job. Also if you are a Fortinet shop, supposedly you can manage rules with FortiManager. I haven’t tried that yet but it looks really cool.
minus-squareDerpgonlinkfedilink1•2 years agoI was specifically talking about Docker+UFW. Of course the possibilities are endless.
minus-square@PlexSheep@feddit.delinkfedilink1•2 years agoInteresting, I might have to read up on that next time. Thanks
minus-square@tux7350@lemmy.worldlinkfedilink1•2 years agoI ran into this same situation, this repo helped me solve it. https://github.com/chaifeng/ufw-docker#solving-ufw-and-docker-issues
UFW does work with Docker, but requires some tweaking. IIRC you have to disallow Docker to modify IPTables and then add a rule to forward all traffic to the Docker network of your choice. It’s a little finicky but works.
But…why?
Project Calico is designed for segmenting network traffic between kubernetes workloads.
Right tool for the job.
Also if you are a Fortinet shop, supposedly you can manage rules with FortiManager. I haven’t tried that yet but it looks really cool.
I was specifically talking about Docker+UFW. Of course the possibilities are endless.
Interesting, I might have to read up on that next time. Thanks
I ran into this same situation, this repo helped me solve it.
https://github.com/chaifeng/ufw-docker#solving-ufw-and-docker-issues