Disable Docker IP masquerade

nimexs · February 13, 2020, 4:30pm

Hello,
I’ve been familiarizing myself with docker lately and got a rootless git container running on CentOS 8. Sadly I’ve hit a road block.
Fail2ban is running on the host, and I’d like to use it to moderate git logins. Currently, Docker is masquerading all incoming connections though.
Masquerade is disabled in the Docker bridge network aswell as the daemon.json, yet connections still get logged with the bridge ip. I would appreciate if you could point me in the right direction.

Thanks in advance!

Edit:

Issue type
Question

OS Version/build
CentOs 8

App version
19.03.5

Steps to reproduce
Create Network with

driver: bridge
driver_opts: com.docker.network.bridge.enable_ip_masquerade: ‘false’

daemon.json

{
“ip-masq”: false
}

Incoming connection ip’s are masked.

Topic		Replies	Views
How to change the docker0 bridge by default General	12	3396	February 2, 2022
Network : Lost Host IP General docker	1	2834	October 28, 2015
Docker network --ipv6 still uses masq General docker	2	492	November 6, 2023
What is this MASQUERADE line meaning in iptables? General	1	1556	June 16, 2016
Is it possible to disable nat in docker-compose? Compose security , docker , build	3	13905	August 14, 2024

Disable Docker IP masquerade

Related topics