disable docker from managing iptables

2025-12-07 09:42:46 +01:00 · 2022-12-22 13:26:10 -05:00
parent b4908e2bb9
commit 90882ce1db
2 changed files with 14 additions and 0 deletions
--- a/salt/docker/files/iptables-disabled.conf
+++ b/salt/docker/files/iptables-disabled.conf
@@ -0,0 +1,3 @@
+[Service]
+ExecStart=
+ExecStart=/usr/bin/dockerd -H fd:// --containerd=/run/containerd/containerd.sock --iptables=false
--- a/salt/docker/init.sls
+++ b/salt/docker/init.sls
@@ -20,6 +20,17 @@ dockerheldpackages:
    - hold: True
    - update_holds: True

+#disable docker from managing iptables
+iptables_disabled:
+  file.managed:
+    - name: /etc/systemd/system/docker.service.d/iptables-disabled.conf
+    - source: salt://docker/files/iptables-disabled.conf
+    - makedirs: True
+  cmd.run:
+    - name: systemctl daemon-reload
+    - onchanges:
+      - file: iptables_disabled
+
 # Make sure etc/docker exists
 dockeretc:
  file.directory: