In my network I have multiple endpoints (devices) behind multiple vpn edge routers. The edge routers have all different ip addresses. The endpoints (devices) behind the egde routers have all the same ...

I have some containers that are bound to the host but I don't want them to be exposed to internet except HTTP ones. So I do: sudo iptables -F DOCKER-USER sudo iptables -I DOCKER-USER -i ens3 -p tcp -m ...

by default Docker will adjust iptables according to containers bound to the host... but in my case I don't want to have all exposed to internet. What I'm doing is modifying the chain DOCKER-USER so it ...

Is it possible to modify the output device/interface of a received packet in a libnetfilter_queue script run in userspace? How would one do this, with libmnl calls or otherwise? The desired result is ...

Given the iptables listing below, could anyone explain me why I'm still able to access from everywhere the service inside a docker container (IP 192.168.160.2:8050) which was supposed to be accessible ...

I'm stuck with a problem. I have four hosts (1, 2, 3, 4) inside Rancher 1.6 UI. All hosts have almost the same configuration: nginx, PHP, MongoDB. Host 1 has both rancher/server and rancher/agent up ...

Suppose I have a DNAT rule which forwards TCP packets, destined for frontend IP, to a backend IP, which is a server say server1. This backend server1 is up and running and we have an already ...

I'm facing an unusual issue with a Kubernetes deployment using the Mailu Helm chart, specifically the mailu-front component. After updating the deployment, the newly created pod works fine, but the ...

After having tried several deployment strategies with Nomad docker containers with traefik on the front, I'm encountering the unresolved problem of ports on clients dynamically opened by services that ...

every image centos-7 or rocky-linux 8.7+ that I download on my ubuntu.2204 machine when I build it with all the packages I need, the only one that I can't run when I save this image and load it into ...

In a larger firewall the following two lines allow me to connect from the internet to an SSH server running on the LAN host 172.27.255.4 and listening on ports 1046 and 22: iptables -t nat -A ...

I created a CentOS machine from base image that can be found in GCP. After powering on I looked at the iptables rule, seems like everything is on I removed all the firewall rules and chained ones as ...

I have a .NET 6 Web API application and I want to edit my iptables rule in hosted system. (the system that Web API run on it) I have rule like below -A INPUT -m tcp --protocol tcp --source 2.2.2.2 --...

I know it's a little bit strange setup. I create two containers con1 and con2. con2 is extended from docker:dind which allows me to run docker containers within a docker container. The container which ...

I work on Linux and want to add rules to iptable. I want these rules to be immutable anyway (either changed or deleted). What should I do? Note that for me the rules that are running and kept in ...