this post was submitted on 01 Jul 2023
10 points (100.0% liked)
DevOps
1675 readers
2 users here now
DevOps integrates and automates the work of software development (Dev) and IT operations (Ops) as a means for improving and shortening the systems development life cycle.
Rules:
- Posts must be relevant to DevOps
- No NSFW content
- No hate speech, bigotry, etc
- Try to keep discussions on topic
- No spam of tools/companies/advertisements
- It’s OK to post your own stuff part of the time, but the primary use of the community should not be promotional content.
Icon base by Lorc under CC BY 3.0 with modifications to add a gradient
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
A lot of people don't don't realize that the port configuration of
127.0.0.1:8080
/localhost:8080
is different than just8080
. One binds to localhost, meaning remote machines can't access it and the other does not.Combine this with the fact that people don't realize docker bypasses firewalls like ufw or firewalld, editing ip/nftables rules directly...If you use an ip/port search engine like shodan or zoomeye, you can find loads of docker containers that probably weren't supposed to be on the net.
Protip: you can configure the default host bind IP via
/etc/docker/daemon.json
. You could for example set:which would result in
-p "8080:8080"
being equivalent to-p "127.0.0.1:8080:8080"