Y
Hacker News
new
|
ask
|
show
|
jobs
by
rnmmrnm
678 days ago
just my two cents that netfilter (for which iptables is a frontend) is a kernel subsystem and therefore global to all containers on host.