treechicken@lemmy.world to Programmer Humor@lemmy.ml · 1 year agoFirewalllemmy.worldimagemessage-square69fedilinkarrow-up15arrow-down10
arrow-up15arrow-down1imageFirewalllemmy.worldtreechicken@lemmy.world to Programmer Humor@lemmy.ml · 1 year agomessage-square69fedilink
minus-squareDerpgon@programming.devlinkfedilinkarrow-up0·1 year agoUFW does work with Docker, but requires some tweaking. IIRC you have to disallow Docker to modify IPTables and then add a rule to forward all traffic to the Docker network of your choice. It’s a little finicky but works.
minus-squarePlexSheep@feddit.delinkfedilinkarrow-up0·1 year agoInteresting, I might have to read up on that next time. Thanks
minus-squareJasonDJ@lemmy.ziplinkfedilinkarrow-up0·1 year agoBut…why? Project Calico is designed for segmenting network traffic between kubernetes workloads. Right tool for the job. Also if you are a Fortinet shop, supposedly you can manage rules with FortiManager. I haven’t tried that yet but it looks really cool.
UFW does work with Docker, but requires some tweaking. IIRC you have to disallow Docker to modify IPTables and then add a rule to forward all traffic to the Docker network of your choice. It’s a little finicky but works.
Interesting, I might have to read up on that next time. Thanks
But…why?
Project Calico is designed for segmenting network traffic between kubernetes workloads.
Right tool for the job.
Also if you are a Fortinet shop, supposedly you can manage rules with FortiManager. I haven’t tried that yet but it looks really cool.