Y
Hacker News
new
|
ask
|
show
|
jobs
by
BrandoElFollito
2148 days ago
Ah, now I get what you mean - that entries such as
ACCEPT tcp -- anywhere 172.19.0.10 tcp dpt:8843
are created by docker, independently from the configuration of iptables themselves.
1 comments
Sebb767
2147 days ago
Taking precedence was not the ideal word - it uses the same ip tables, but it inserts its own table as the first one. Therefore it 'ignores' system rules, which might come at a surprise.
link