iptables + conntrack + UDP

iptables + conntrack + UDP

While UDP is connection-less, conntrack can track connections.

Connections can be checked using apt install conntrack

conntrack -L will show all connection states stores in conntrack.

iptables on Docker

Since Docker routes packets to virtual interfaces, input rules will not working as filters, use forward instead.

Leave a Reply

Your email address will not be published. Required fields are marked *