44a3453d73
Per-network option com.docker.network.bridge.trusted-host-interfaces accepts a list of interfaces that are allowed to route directly to a container's published ports in a bridge network with nat enabled. This daemon level option disables direct access filtering, enabling direct access to published ports on container addresses in all bridge networks, via all host interfaces. It overlaps with short-term env-var workaround: DOCKER_INSECURE_NO_IPTABLES_RAW=1 - it does not allow packets sent from outside the host to reach ports published only to 127.0.0.1 - it will outlive iptables (the workaround was initially intended for hosts that do not have kernel support for the "raw" iptables table). Signed-off-by: Rob Murray <rob.murray@docker.com>
Docker Engine Documentation
The man pages for Docker Engine are generated from the markdown sources and tooling in this directory.
Generate the man pages
Run make from within this directory.
A Go toolchain is required.
The generated man pages will be placed in manN subdirectories, where N is the manual section number.
Install the man pages
Run make install from within this directory.
The make variables prefix, mandir, INSTALL, INSTALL_DATA and DESTDIR
are supported for customizing the installation.
Add a new man page
Create a new Markdown file in this directory with a filename TITLE.SECTION.md, where TITLE is the man page title and SECTION is the section number. The Makefile will pick it up automatically.
The Makefile ignores Markdown files that do not match the glob *.*.md,
allowing non-manpage documentation (like this README file) to coexist.