self-hosted/dockerfiles
1
0
Fork 0
mirror of https://github.com/vimagick/dockerfiles.git synced 2024-12-02 09:21:53 +02:00
Code Issues Releases Activity
a9272e4387
dockerfiles/iptables/Dockerfile
kev e0be188adf update iptables
2021-12-15 18:00:42 +08:00

26 lines
771 B
Docker
Raw Blame History

#
# Dockerfile for iptables
#
FROM alpine:3
MAINTAINER EasyPi Software Foundation
RUN apk add -U iproute2 && ln -s /usr/lib/tc /lib/tc
ENV LIMIT_PORT=8388
ENV LIMIT_CONN=5
ENV TCP_PORTS=80,443
ENV UDP_PORTS=53
ENV RATE=1mbit
ENV BURST=1kb
ENV LATENCY=50ms
ENV INTERVAL=60
ENV DEVICE=eth0
CMD iptables -F \
&& iptables -A INPUT -p tcp -m state --state NEW --dport $LIMIT_PORT -m connlimit --connlimit-above $LIMIT_CONN -j DROP \
&& iptables -A OUTPUT -p tcp -m state --state NEW -m multiport ! --dports $TCP_PORTS -j DROP \
&& iptables -A OUTPUT -p udp -m state --state NEW -m multiport ! --dports $UDP_PORTS -j DROP \
&& tc qdisc add dev $DEVICE root tbf rate $RATE burst $BURST latency $LATENCY \
&& watch -n $INTERVAL tc -s qdisc ls dev $DEVICE
Reference in New Issue View Git Blame Copy Permalink