diff --git a/salt/docker/files/iptables-disabled.conf b/salt/docker/files/iptables-disabled.conf
new file mode 100644
index 000000000..c6cf9b170
--- /dev/null
+++ b/salt/docker/files/iptables-disabled.conf
@@ -0,0 +1,3 @@
+[Service]
+ExecStart=
+ExecStart=/usr/bin/dockerd -H fd:// --containerd=/run/containerd/containerd.sock --iptables=false
diff --git a/salt/docker/init.sls b/salt/docker/init.sls
index 71ed4a153..96dd0ee95 100644
--- a/salt/docker/init.sls
+++ b/salt/docker/init.sls
@@ -20,6 +20,17 @@ dockerheldpackages:
     - hold: True
     - update_holds: True
 
+#disable docker from managing iptables
+iptables_disabled:
+  file.managed:
+    - name: /etc/systemd/system/docker.service.d/iptables-disabled.conf
+    - source: salt://docker/files/iptables-disabled.conf
+    - makedirs: True
+  cmd.run:
+    - name: systemctl daemon-reload
+    - onchanges:
+      - file: iptables_disabled
+
 # Make sure etc/docker exists
 dockeretc:
   file.directory: