ufw

add docker support

Bug #1860677 reported by Alex Garel on 2020-01-23

This bug affects 2 people

Affects		Status	Importance	Assigned to	Milestone
	docker	New	Undecided	Unassigned
	ufw	Triaged	Wishlist	Unassigned

Bug Description

https://bugs.launchpad.net/bugs/1717648 reports the lack of support of docker as a bug. It is replied asking to deal with it in before.rules which is fine.

That said, the goal of ufw being to help users dealing with firewall in a simple way, and as docker is very popular, it would be cool to support it.

I see this as ufw interacting with the DOCKER-USER chain in the way it does now with INPUT. The functionality could be switch on/off by configuration (even if having rule in DOCKER-USER without docker, does not harm). There would be a default policy on docker (deny by default), and you could add rules. I imagine it by adding a docker tag to actual [incoming|outgoing|routed].

This is for an upcoming release of ufw.

Tags:

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2020-04-02:

It might be possible to do this, but ufw doesn't currently integrate with other software in the manner. At a minimum, we could add information to the man page for this though.

Changed in ufw:
importance:	Undecided → Wishlist
status:	New → Triaged

Revision history for this message

Jelle Besseling (jellebigbridge) wrote on 2023-03-15:

> It might be possible to do this, but ufw doesn't currently integrate with other software in the manner.

I think to keep firewalls uncomplicated it would suit ufw well to integrate with docker. Currently it's quite complicated to set correct firewall rules when docker is running. It's even harder to combine this with ufw.

Ufw should help fix this problem by adding docker functionality

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.