[lxc-users] LXD firewall container?
Fajar A. Nugraha
list at fajar.net
Sat May 6 17:35:14 UTC 2017
On Fri, May 5, 2017 at 9:29 PM, Ron Kelley <rkelleyrtp at gmail.com> wrote:
> Fajar,
>
> Just following up on this thread. Thanks for pointing out the redundant
> NAT problem with ufw. I found another solution to prevent this issue when
> restarting ufw (from here: https://gist.github.com/kimus/9315140 in the
> comments section)
>
> Adding a â-Fâ statement before your first NAT rule flushes the NAT -
> thereby preventing the redundant NAT entries.
>
That would certainly work, if ufw is the only one managing NAT rules.
I forgot to mention that my ufw deployment was on the lxd host, where there
were also NATs created by lxdbr0 in a custom chain. Using only "-F" in my
case would mean lxdbr0 NAT is removed as well.
--
Fajar
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20170507/7b203e97/attachment.html>
More information about the lxc-users
mailing list