I’m often stuck on Docker networking configuration. I hear about SDN for Docker recently and very interested in networking. I should be be familiar with networking and distributed storage technologies even though I am a programmer.
CoreOS on VPS
I’ve been playig with Core OS on Vultr in these days, today I realized that a iptables rule which I set on CoreOS is not working in the way it’s supposed to do. I didn’t know why INPUT rule is now working. The reason of this storange behavior (at least for me) is Docker set DNAT rules by default.
I manage to add a -s flag on an auto generated DNAT rule, and it looks like I intend.
$ sudo sh -c "iptables-save > /etc/iptables.rules" |
Of course this is a transient work around. When docker restarted this modified pars will disappear. A better solution which comes to mind is combined with automated reverse proxies such a nginx-proxy or hipache.