pfDeploy
whalewall
pfDeploy | whalewall | |
---|---|---|
1 | 6 | |
2 | 184 | |
- | - | |
10.0 | 7.8 | |
about 1 year ago | 4 days ago | |
Go | Go | |
BSD 3-clause "New" or "Revised" License | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pfDeploy
whalewall
-
Docker developers discuss changes in how ports are to be forwarded into containers
It took me a long time to notice this issue, and I've found this as a possible solution. Working on deploying it, and will see how it goes.
-
Self hosted security recommendations
Look into ufw (or iptables/nftables if you want to go deeper) to restrict outbound network access. Note though that Docker containers won't respect host firewall rules by default, so I created whalewall to easily manage container firewall rules: https://github.com/capnspacehook/whalewall
- Any experience with ufw-docker?
- Whalewall v0.2.0 released
- Whalewall – Easily mange firewall rules for Docker containers
-
Whalewall - easily manage firewall rules for Docker containers
I recently found out that Docker containers ignore any host-based firewall rules by default and wanted a solution to restrict container traffic. This weekend I finally finished a project to do just that: https://github.com/capnspacehook/whalewall
What are some alternatives?
ufw-docker-automated - Manage docker containers firewall with UFW!
portmaster - 🏔 Love Freedom - ❌ Block Mass Surveillance
trafficjam - A Docker firewall for your reverse proxy network
pfSense - Main repository for pfSense
ufw-docker - To fix the Docker and UFW security flaw without disabling iptables
rpfload - PF firewall config loader for OpenBSD and FreeBSD with automatic backup rollback and logging
Moby - The Moby Project - a collaborative project for the container ecosystem to assemble container-based systems
ice - A Go implementation of ICE
hub - Main repository for crowdsec scenarios/parsers
Gravitational Teleport - The easiest, and most secure way to access and protect all of your infrastructure.
WireGuard-Guide - WireGuard Guide. Learn all about WireGuard for Networking and in the Cloud (Microsoft Azure, AWS, and Google Cloud).