Hello,
I was installing ELK stack with docker.
I have Elasticsearch, Kibana and Logstash installed on the same machine that works correctly.
Because logstash docker container users is not root, I needed to redirect connection to the syslog host port 514 to 1514 where I configured logstash container to listen to.
So I played with RH firewalld rules but I realized that after I run firewalld I am no longer able to start containers because I get the error:

root@gargantua [ ~ ]# docker-compose up -d
Creating network "root_default" with the default driver
ERROR: Failed to Setup IP tables: Unable to enable SKIP DNAT rule:  (iptables failed: iptables --wait -t nat -I     DOCKER -i br-b485251972e0 -j RETURN: iptables: No chain/target/match by that name.
(exit status 1))

How can I sort out this problem? At the moment to solve the situation I need to reboot the host…

Thank You