treechicken@lemmy.world to Programmer Humor@lemmy.ml · 8 months agoFirewalllemmy.worldimagemessage-square69fedilinkarrow-up14arrow-down10
arrow-up14arrow-down1imageFirewalllemmy.worldtreechicken@lemmy.world to Programmer Humor@lemmy.ml · 8 months agomessage-square69fedilink
minus-squarederpgon@programming.devlinkfedilinkarrow-up0·8 months agoUFW does work with Docker, but requires some tweaking. IIRC you have to disallow Docker to modify IPTables and then add a rule to forward all traffic to the Docker network of your choice. It’s a little finicky but works.
minus-squarePlexSheep@feddit.delinkfedilinkarrow-up0·8 months agoInteresting, I might have to read up on that next time. Thanks
minus-squareJasonDJ@lemmy.ziplinkfedilinkarrow-up0·8 months agoBut…why? Project Calico is designed for segmenting network traffic between kubernetes workloads. Right tool for the job. Also if you are a Fortinet shop, supposedly you can manage rules with FortiManager. I haven’t tried that yet but it looks really cool.
UFW does work with Docker, but requires some tweaking. IIRC you have to disallow Docker to modify IPTables and then add a rule to forward all traffic to the Docker network of your choice. It’s a little finicky but works.
Interesting, I might have to read up on that next time. Thanks
But…why?
Project Calico is designed for segmenting network traffic between kubernetes workloads.
Right tool for the job.
Also if you are a Fortinet shop, supposedly you can manage rules with FortiManager. I haven’t tried that yet but it looks really cool.