{"id":22908893,"url":"https://github.com/ipunkt/docker-firewall-port","last_synced_at":"2025-04-01T09:59:18.967Z","repository":{"id":66084698,"uuid":"138151991","full_name":"ipunkt/docker-firewall-port","owner":"ipunkt","description":"Firewall a single port using iptables from inside docker","archived":false,"fork":false,"pushed_at":"2018-06-21T11:05:37.000Z","size":3,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":4,"default_branch":"master","last_synced_at":"2025-02-07T05:27:48.523Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ipunkt.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-06-21T09:52:31.000Z","updated_at":"2018-06-21T10:58:17.000Z","dependencies_parsed_at":null,"dependency_job_id":"bf7d82fb-6211-4c9c-b187-0ad3287b6802","html_url":"https://github.com/ipunkt/docker-firewall-port","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ipunkt%2Fdocker-firewall-port","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ipunkt%2Fdocker-firewall-port/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ipunkt%2Fdocker-firewall-port/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ipunkt%2Fdocker-firewall-port/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ipunkt","download_url":"https://codeload.github.com/ipunkt/docker-firewall-port/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246620260,"owners_count":20806722,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-12-14T03:33:01.436Z","updated_at":"2025-04-01T09:59:18.946Z","avatar_url":"https://github.com/ipunkt.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# docker-firewall-port\nUse iptables to firewall off a single port on the host\n\n## Use\nCreate a Rancher service with\n- `Always run one instance on every host`\n- add the capability `NET_ADMIN`\n- Networking-\\\u003eNetwork `Host`\n- Environment `ALLOWED_ADDRESSES=1.2.3.4,2.3.4.5`\n\n## Parameters\nParameters are given as environment variable. The following parameters are available\n- PORT, default `111`\n- PROTOCOL, default `UDP`. Use `ANY` to not filter by protocol\n- ALLOWED\\_ADDRESSES, REQUIRED. Allowed ip addresses separated by `,`,`;` or ` `\n\n## Use-case\nThis image was created with the intend to automatically firewall off port 111 on\nRancher droplets, only accepting traefik from the nfs server serving permanent\nstorage without opening the port to the world, allowing reflection ddos attacks\non others using our machine.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fipunkt%2Fdocker-firewall-port","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fipunkt%2Fdocker-firewall-port","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fipunkt%2Fdocker-firewall-port/lists"}