Also @Infernal_pizza@lemmy.world and @Infernal_pizza@mastodon.social, Formerly @Infernal_pizza@lemm.ee (RIP)
Arch Linux @lemmy.ml Why is nftables a dependency for docker?
Linux @lemmy.ml Just "bricked" a VM while testing secure boot and I'm not sure how
Linux @lemmy.ml Screen auto-rotate broken on Gnome | Solved
Recommendations @lemmy.world Which streaming device is the least worst?
Games @lemmy.world Rockstar vs. Union: What Really Happened at Court? | People Make Games
Selfhosted @lemmy.world Self hosted Onedrive alternative
Linux Questions @lemmy.zip Confused by Wireguard and resolv.conf
Linux @lemmy.ml How to save iptables rules in Debian and Ubuntu?
/0 @lemmy.dbzer0.com Issues viewing comments
I don't usually manage iptables rules myself, I usually use ufw because I find it much easier to work with. I'm just migrating to a new host and wanted to fix the fact that docker ignores ufw rules by default using these iptables rules: https://github.com/chaifeng/ufw-docker#solving-ufw-and-docker-issues
When I installed docker I noticed it installed nftables as a dependency which confused me because everything I can see suggests it still uses iptables by default unless you explicitly configure it not to. nft list ruleset is blank so it doesn't look like it has created any nftables rules, and I can see a bunch of docker rules with iptables-save. Because of this I'm assuming those ufw iptables rules will still work as they have before?
When you say nftables can work with iptables rules is that just with iptables-nft? That seems to be the only way to get ufw to work with nftables but the wiki seems to suggest not using iptables-nft with docker: https://wiki.archlinux.org/title/Nftables#Working_with_Docker