Issues with firewalling docker using docker-user

ptulpen1234 · September 15, 2019, 1:48pm

Hello,
I try to make the access to docker containers available only from specific nodes

therefore I added a rule to the docker-user chain like this:

The problem is that now access from another host is restricted, but from containers on the same host I can still access

I tried out the following commands alternatively:

iptables -I DOCKER-USER -i enp0s8  -m set ! --match-set white_list src -j DROP
iptables -I DOCKER-USER  ! -s 192.168.65.90 -j DROP
iptables -I DOCKER-USER   -m set ! --match-set white_list src -j DROP

And I disabled icc

Any ideas why this is still not blocked?

Topic		Replies	Views
Docker restrict container network access General docker	0	482	September 18, 2020
Only allow certain IPs to a specific container General	0	73	June 18, 2024
Restricting External Container Access with Iptables General	5	47903	November 14, 2018
Docker and Firewalld configuration to drop access to local networks General	0	422	April 20, 2023
Restricting exposed Docker ports with iptables General	2	9750	March 18, 2022

Issues with firewalling docker using docker-user

Related topics