qaz@lemmy.world to

Programmer Humor@programming.devEnglish · 21 days ago

Context: Docker bypasses all UFW firewall rules

191

Context: Docker bypasses all UFW firewall rules

qaz@lemmy.world to

Programmer Humor@programming.devEnglish · 21 days ago

Docker docs:

Docker routes container traffic in the nat table, which means that packets are diverted before it reaches the INPUT and OUTPUT chains that ufw uses. Packets are routed before the firewall rules can be applied, effectively ignoring your firewall configuration.

Chat

MasterNerd@lemmy.zip
link
fedilink
arrow-up
4·
21 days ago
I mean if you’re hosting anything publicly, you really should have a dedicated firewall
- qaz@lemmy.worldOP
  link
  fedilink
  English
  arrow-up
  1·
  20 days ago
  Do you mean a hardware firewall?
  - MasterNerd@lemmy.zip
    link
    fedilink
    arrow-up
    2·
    20 days ago
    Basically yeah, though I didn’t specify hardware because of how often virtualization is done now
    - qaz@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      1·
      20 days ago
      The VPS I’m using unfortunately doesn’t offer an external firewall

Programmer Humor@programming.dev

programmer_humor@programming.dev

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !programmer_humor@programming.dev

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

17 users / day
3.92K users / week
6.86K users / month
19.4K users / 6 months
3 local subscribers
26.4K subscribers
1.52K Posts
34.5K Comments
Modlog