-
-
Save jordanorelli/ba927c8e957d866d7185642b54decc9e to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Chain INPUT (policy ACCEPT) | |
| target prot opt source destination | |
| ACCEPT all -- anywhere anywhere | |
| REJECT all -- loopback/8 anywhere reject-with icmp-port-unreachable | |
| ACCEPT icmp -- anywhere anywhere state NEW icmp echo-request | |
| ACCEPT tcp -- anywhere anywhere tcp dpt:ssh state NEW | |
| ACCEPT tcp -- anywhere anywhere tcp dpt:http state NEW | |
| ACCEPT tcp -- anywhere anywhere tcp dpt:https state NEW | |
| ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED | |
| LOG all -- anywhere anywhere limit: avg 5/min burst 5 LOG level debug prefix "iptables_INPUT_denied: " | |
| REJECT all -- anywhere anywhere reject-with icmp-port-unreachable | |
| Chain FORWARD (policy ACCEPT) | |
| target prot opt source destination | |
| DOCKER-ISOLATION all -- anywhere anywhere | |
| DOCKER all -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED | |
| ACCEPT all -- anywhere anywhere | |
| ACCEPT all -- anywhere anywhere | |
| LOG all -- anywhere anywhere limit: avg 5/min burst 5 LOG level debug prefix "iptables_FORWARD_denied: " | |
| REJECT all -- anywhere anywhere reject-with icmp-port-unreachable | |
| Chain OUTPUT (policy ACCEPT) | |
| target prot opt source destination | |
| Chain DOCKER (1 references) | |
| target prot opt source destination | |
| ACCEPT tcp -- anywhere 172.17.0.2 tcp dpt:9200 | |
| ACCEPT tcp -- anywhere 172.17.0.3 tcp dpt:8098 | |
| ACCEPT tcp -- anywhere 172.17.0.3 tcp dpt:8087 | |
| ACCEPT tcp -- anywhere 172.17.0.7 tcp dpt:11211 | |
| ACCEPT tcp -- anywhere 172.17.0.4 tcp dpt:4171 | |
| ACCEPT tcp -- anywhere 172.17.0.4 tcp dpt:4161 | |
| ACCEPT tcp -- anywhere 172.17.0.4 tcp dpt:4160 | |
| ACCEPT tcp -- anywhere 172.17.0.4 tcp dpt:4151 | |
| ACCEPT tcp -- anywhere 172.17.0.4 tcp dpt:4150 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:6400 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:6300 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:6100 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:5900 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:5700 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:5600 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:5500 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:5400 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:5200 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:5100 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:4800 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:4700 | |
| ACCEPT tcp -- anywhere 172.17.0.6 tcp dpt:4400 | |
| ACCEPT tcp -- anywhere 172.17.0.5 tcp dpt:8500 | |
| Chain DOCKER-ISOLATION (1 references) | |
| target prot opt source destination | |
| RETURN all -- anywhere anywhere |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment