qaz@lemmy.world to

Programmer Humor@programming.devEnglish · 2 days ago

Context: Docker bypasses all UFW firewall rules

521

Context: Docker bypasses all UFW firewall rules

qaz@lemmy.world to

Programmer Humor@programming.devEnglish · 2 days ago

Docker docs:

Docker routes container traffic in the nat table, which means that packets are diverted before it reaches the INPUT and OUTPUT chains that ufw uses. Packets are routed before the firewall rules can be applied, effectively ignoring your firewall configuration.

Chat

Harbinger01173430@lemmy.world
link
fedilink
arrow-up
6·
14 hours ago
Nat is not security.

Keep that in mind.

It’s just a crutch ipv4 has to use because it’s not as powerful as the almighty ipv6
- qaz@lemmy.worldOP
  link
  fedilink
  English
  arrow-up
  2·
  14 hours ago
  Counterpoint

Programmer Humor@programming.dev

programmer_humor@programming.dev

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !programmer_humor@programming.dev

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

842 users / day
3.51K users / week
7.13K users / month
7.19K users / 6 months
1 local subscriber
26.1K subscribers
253 Posts
2.91K Comments
Modlog