2020-11-30 09:59:34 +01:00
|
|
|
# The following settings require a restart of docker to take full effect, A reload will only have partial or no effect:
|
2022-01-04 17:03:32 +01:00
|
|
|
# log_driver
|
2020-11-30 09:59:34 +01:00
|
|
|
# bip
|
|
|
|
# blocked_interfaces
|
|
|
|
# extra_iptables_args
|
|
|
|
# device
|
2020-06-19 13:17:32 +02:00
|
|
|
|
|
|
|
config globals 'globals'
|
2021-01-25 07:57:08 +01:00
|
|
|
# option alt_config_file '/etc/docker/daemon.json'
|
|
|
|
option data_root '/opt/docker/'
|
2022-01-04 17:03:32 +01:00
|
|
|
# option log_driver 'local'
|
2021-01-25 07:57:08 +01:00
|
|
|
option log_level 'warn'
|
2021-01-25 08:46:35 +01:00
|
|
|
option iptables '1'
|
|
|
|
# list hosts 'unix:///var/run/docker.sock'
|
|
|
|
# option bip '172.18.0.1/24'
|
2021-01-25 09:05:28 +01:00
|
|
|
# option fixed_cidr '172.17.0.0/16'
|
|
|
|
# option fixed_cidr_v6 'fc00:1::/80'
|
|
|
|
# option ipv6 '1'
|
|
|
|
# option ip '::ffff:0.0.0.0'
|
2021-01-25 07:58:17 +01:00
|
|
|
# list dns '172.17.0.1'
|
2021-01-25 07:57:08 +01:00
|
|
|
# list registry_mirrors 'https://<my-docker-mirror-host>'
|
|
|
|
# list registry_mirrors 'https://hub.docker.com'
|
2020-10-29 09:49:55 +01:00
|
|
|
|
2020-11-30 09:59:34 +01:00
|
|
|
# Docker ignores fw3 rules and by default all external source IPs are allowed to connect to the Docker host.
|
|
|
|
# See https://docs.docker.com/network/iptables/ for more details.
|
|
|
|
# firewall config changes are only additive i.e firewall will need to be restarted first to clear old changes,
|
|
|
|
# then docker restarted to load in new changes.
|
2020-10-29 09:49:55 +01:00
|
|
|
config firewall 'firewall'
|
2020-11-11 15:05:38 +01:00
|
|
|
option device 'docker0'
|
2020-10-29 09:49:55 +01:00
|
|
|
list blocked_interfaces 'wan'
|
2020-11-30 09:59:34 +01:00
|
|
|
# option extra_iptables_args '--match conntrack ! --ctstate RELATED,ESTABLISHED' # allow outbound connections
|