Docker Community Forums

Share and learn in the Docker community.

What are best practices for securing nodes managed by Docker Cloud?

docker

(Heartbeatdata) #1

Hello all,

can anybody weigh in on best practices for securing nodes managed by Docker Cloud? Should I manually set up a firewall (how, so that Docker Cloud still works?) and things like fail2ban in each node, or is this not necessary? Manually configuring nodes this way somewhat defeats the easy scalability you get with Docker Cloud.

Yes, I did Google and search through the docs, but was as yet unable to find useful information.

Thanks!
Eberhard


(Localguest) #2

Hello @heartbeatdata

Here You can find that Docker Cloud requires the following ports to be open:

6783/tcp
6783/udp
2375/tcp (optional)

One could argue that the firewall won’t be needed if you only expose the service ports that you need exposed to the Internet.