Hi, https://fedoraproject.org/wiki/Changes/firewalld_default_to_nftables mentions a docker-firewalld where can I find that package or source code? thanks --- Lee
On Mon, May 18, 2020 at 07:52:41PM +0530, Thomas Stephen Lee wrote:> https://fedoraproject.org/wiki/Changes/firewalld_default_to_nftables > > mentions a > > docker-firewalld > > where can I find that package or source code?That was just one of the proposed solutions. It looks like the moby-engine packager went with Proposed fix 1, since it includes a: /usr/lib/firewalld/zones/docker.xml It looks like this: https://src.fedoraproject.org/rpms/moby-engine/blob/master/f/docker-zone.xml -- Jonathan Billings <billings at negate.org>
On Mon, May 18, 2020 at 10:38:24AM -0400, Jonathan Billings wrote:> On Mon, May 18, 2020 at 07:52:41PM +0530, Thomas Stephen Lee wrote: > > https://fedoraproject.org/wiki/Changes/firewalld_default_to_nftables > > > > mentions a > > > > docker-firewalld > > > > where can I find that package or source code? > > That was just one of the proposed solutions. It looks like the > moby-engine packager went with Proposed fix 1, since it includes a: > /usr/lib/firewalld/zones/docker.xml > > It looks like this: > https://src.fedoraproject.org/rpms/moby-engine/blob/master/f/docker-zone.xmlAlso, this is for Fedora, not CentOS, so it might not apply to CentOS. moby-engine isn't built for CentOS through EPEL, and I have no way to look at how the Docker.com people package things for CentOS. -- Jonathan Billings <billings at negate.org>
As matter of interest, why would you want to run firewalld inside docker?
On May 31, 2020, at 05:46, Rudi Ahlers <rudiahlers at gmail.com> wrote:> As matter of interest, why would you want to run firewalld inside docker?The package isn?t to run firewalld inside docker, but to set up the firewall on a system hosting docker containers so they can properly send and receive traffic. -- Jonathan Billings <billings at negate.org>