Reputation: 5514
Access host iptables and ufw from privileged Docker container
I would like to access iptables, ufw and reboot running on host OS (Snappy Ubuntu Core 18.04) from Docker container (running on the same host).
What volumes or Docker container parameters are required to make this possible? Container can be run with root user and privileged access.
I´m totally aware of the security implications here, but security is not a concern in this context.
Upvotes: 2
Views: 818
Answers (1)
Reputation: 1417
Using SSH
You can run the container with --net=host option, then it's possible to connect to the host from the container using ssh.
in the host mode, connecting to the port 22 on the host from the container is possible.
Without SSH
if you don't want to use ssh, one way is explained in this post. You need to run the container with --privileged and --pid=host and then use nsenter command. Using this command you get an interactive shell form the host. You can also only run desired command.
$ sudo docker run --privileged --pid=host -it alpine:3.8 \
nsenter -t 1 -m -u -n -i sh
$ sudo docker run --privileged --pid=host -it alpine:3.8 \
nsenter -t 1 -m -u -n | sudo iptables -S
note that if you are using MacOS or Windows, the docker is running in a hypervisor, so using this, you would be in the shell of the hypervisor.
Upvotes: 4
Related Questions
- UFW to allow traffic from Docker
- Access host machine in Docker Container on Ubuntu 18.04
- How to access container IP from host
- Docker containers in user defined docker network - access only from the host
- Docker localhost connection blocked by UFW
- How to let docker container access host network port
- Docker: Access host service from container
- how to secure docker containers with iptables
- Docker and UFW with real IP
- Access host via docker container