InTheForest/moby
1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2026-01-11 18:51:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add option --bridge-accept-fwmark

Browse Source 
Packets with the given firewall mark are accepted by the bridge
driver's filter-FORWARD rules.

The value can either be an integer mark, or it can include a
mask in the format "<mark>/<mask>".

Signed-off-by: Rob Murray <rob.murray@docker.com>
This commit is contained in:
Rob Murray
2025-07-22 12:17:20 +01:00
parent 0c60a0e482
commit cf1695bef1
11 changed files with 291 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
daemon/daemon_unix.go
View File

@@ -938,6 +938,7 @@ func networkPlatformOptions(conf *config.Config) []nwconfig.Option {
"EnableIP6Tables": conf.BridgeConfig.EnableIP6Tables,
"Hairpin": !conf.EnableUserlandProxy || conf.UserlandProxyPath == "",
"AllowDirectRouting": conf.BridgeConfig.AllowDirectRouting,
"AcceptFwMark": conf.BridgeConfig.BridgeAcceptFwMark,
},
}),
}