docker 和iptables 冲突

在 /etc/ufw/before.rules 添加
*nat
:POSTROUTING ACCEPT [0:0]
-A POSTROUTING ! -o docker0 -s 172.17.0.0/16 -j MASQUERADE
COMMIT


ufw reload

ufw allow ssh
ufw deny 5000
ufw default deny
ufw default allow routed
ufw enable
ufw insert 1 allow from 192.168.56.1 to any port 5000

cat /etc/docker/daemon.json 
{"insecure-registries":["192.168.0.11:5000","192.168.56.110:5000","harbor:5000"],"storage-driver":"overlay2","log-opts": {"max-size":"200m", "max-file":"3"},"iptables":false}
View Code

https://www.zhaokeli.com/article/8613.html

【推广】 免费学中医,健康全家人
原文地址:https://www.cnblogs.com/hanwei666/p/14025987.html