treechicken@lemmy.world to Programmer Humor@lemmy.ml · 2 years agoFirewalllemmy.worldimagemessage-square69fedilinkarrow-up15arrow-down10
arrow-up15arrow-down1imageFirewalllemmy.worldtreechicken@lemmy.world to Programmer Humor@lemmy.ml · 2 years agomessage-square69fedilink
minus-squareDerpgon@programming.devlinkfedilinkarrow-up0·2 years agoUFW does work with Docker, but requires some tweaking. IIRC you have to disallow Docker to modify IPTables and then add a rule to forward all traffic to the Docker network of your choice. It’s a little finicky but works.
minus-squarePlexSheep@feddit.delinkfedilinkarrow-up0·2 years agoInteresting, I might have to read up on that next time. Thanks
minus-squareJasonDJ@lemmy.ziplinkfedilinkarrow-up0·2 years agoBut…why? Project Calico is designed for segmenting network traffic between kubernetes workloads. Right tool for the job. Also if you are a Fortinet shop, supposedly you can manage rules with FortiManager. I haven’t tried that yet but it looks really cool.
UFW does work with Docker, but requires some tweaking. IIRC you have to disallow Docker to modify IPTables and then add a rule to forward all traffic to the Docker network of your choice. It’s a little finicky but works.
Interesting, I might have to read up on that next time. Thanks
But…why?
Project Calico is designed for segmenting network traffic between kubernetes workloads.
Right tool for the job.
Also if you are a Fortinet shop, supposedly you can manage rules with FortiManager. I haven’t tried that yet but it looks really cool.