[DiscordArchive] Did you move your docker host to a DMZ or something?
[DiscordArchive] Did you move your docker host to a DMZ or something?
Original source
That will kill all remote access to the server and drop all running connections
rektbyfaith
01-17-2023, 09:55 PM #21Archived author: Foe • Posted: 2023-01-17T21:55:22.077000+00:00
Original source
That will kill all remote access to the server and drop all running connections
Original source
You'll then have to
iptables -I INPUT -p tcp --dport 22 -j ACCEPT
for ssh
rektbyfaith
01-17-2023, 09:55 PM #22Archived author: Foe • Posted: 2023-01-17T21:55:37.428000+00:00
Original source
You'll then have to
iptables -I INPUT -p tcp --dport 22 -j ACCEPT
for ssh
Original source
That would give you a basic, standard deny-all setup
rektbyfaith
01-17-2023, 09:55 PM #23Archived author: Foe • Posted: 2023-01-17T21:55:47.688000+00:00
Original source
That would give you a basic, standard deny-all setup
Original source
then you'd have to forward the ports that you need
rektbyfaith
01-17-2023, 09:56 PM #24Archived author: Foe • Posted: 2023-01-17T21:56:00.316000+00:00
Original source
then you'd have to forward the ports that you need
Original source
including SSH, so you could lock yourself out
rektbyfaith
01-17-2023, 09:56 PM #25Archived author: Foe • Posted: 2023-01-17T21:56:31.746000+00:00
Original source
including SSH, so you could lock yourself out
Original source
sudo iptables -S
check if there's any conflicting rules
rektbyfaith
01-17-2023, 09:57 PM #26Archived author: Foe • Posted: 2023-01-17T21:57:09.570000+00:00
Original source
sudo iptables -S
check if there's any conflicting rules
Original source
Those iptables rules don’t work with docker - they have to be added to the DOCKER-USER chain (somehow, still trying to figure it out)
rektbyfaith
01-17-2023, 10:41 PM #27Archived author: notsure • Posted: 2023-01-17T22:41:47.135000+00:00
Original source
Those iptables rules don’t work with docker - they have to be added to the DOCKER-USER chain (somehow, still trying to figure it out)
Original source
you might be interested in ufw. much simpler than bare iptables. It might be the default for ubuntu?
https://wiki.ubuntu.com/UncomplicatedFirewall
rektbyfaith
01-17-2023, 10:57 PM #28Archived author: mynameismeat • Posted: 2023-01-17T22:57:57.962000+00:00
Original source
you might be interested in ufw. much simpler than bare iptables. It might be the default for ubuntu?
https://wiki.ubuntu.com/UncomplicatedFirewall
Original source
They should, your connection endpoint is the docker host, that's where iptables should stop the external traffic from getting in
rektbyfaith
01-17-2023, 11:16 PM #29Archived author: Foe • Posted: 2023-01-17T23:16:39.770000+00:00
Original source
They should, your connection endpoint is the docker host, that's where iptables should stop the external traffic from getting in
Original source
you can also make sure docker isn't exposing the port as long as the worldserver and authserver are on the same docker network
rektbyfaith
01-17-2023, 11:26 PM #30Archived author: mynameismeat • Posted: 2023-01-17T23:26:12.686000+00:00
Original source
you can also make sure docker isn't exposing the port as long as the worldserver and authserver are on the same docker network
1 Guest(s)
1 Guest(s)