李子博客日常记录,给遇到坑的小伙伴留个记录。
docker端口白名单
echo 1 > /proc/sys/net/ipv4/ip_forward
firewall-cmd –permanent –add-masquerade
firewall-cmd –permanent –direct –remove-chain ipv4 filter DOCKER-USER
firewall-cmd –permanent –direct –remove-rules ipv4 filter DOCKER-USER
firewall-cmd –permanent –direct –add-chain ipv4 filter DOCKER-USER
firewall-cmd –permanent –direct –add-rule ipv4 filter DOCKER-USER 0 -i docker0 -j ACCEPT -m comment –comment “allows incoming from docker”
firewall-cmd –permanent –direct –add-rule ipv4 filter DOCKER-USER 0 -i docker0 -o eth0 -j ACCEPT -m comment –comment “allows docker to eth0”
firewall-cmd –permanent –direct –add-rule ipv4 filter DOCKER-USER 0 -m conntrack –ctstate RELATED,ESTABLISHED -j ACCEPT -m comment –comment “allows docker containers to connect to the outside world”
firewall-cmd –permanent –direct –add-rule ipv4 filter DOCKER-USER 0 -j RETURN -s 172.17.0.0/16 -m comment –comment “allow internal docker communication”
firewall-cmd –permanent –direct –add-rule ipv4 filter DOCKER-USER 0 -s 172.10.6.253/32 -j ACCEPT
firewall-cmd –permanent –direct –add-rule ipv4 filter DOCKER-USER 0 -p tcp -m multiport –dports 80,2222 -s 172.10.6.253/32 -j ACCEPT
firewall-cmd –permanent –direct –add-rule ipv4 filter DOCKER-USER 0 -j REJECT –reject-with icmp-host-unreachable -m comment –comment “reject all other traffic”
firewall-cmd –reload
Dazeng 1年前 (2022-03-18)说:
云中转 1年前 (2022-02-25)说:
三年梦 1年前 (2022-02-08)说:
梦三年 1年前 (2022-02-08)说:
防水材料加盟 1年前 (2022-01-21)说:
流量卡 1年前 (2021-11-04)说:
qiezi 1年前 (2021-10-02)说:
博主博主~求推荐一个CDN叭,看你的站加载速度是真的快,用的是谁家的CDN鸭~
cdn用的www.fastcache.com家的,速度一般般。