dev/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

Merge pull request #328164 from truh/docs/oci-containers-firewall-bypass

Browse Source 
nixos/oci-containers: document firewall bypass
This commit is contained in:
Aleksana 2024-08-04 16:35:23 +08:00 committed by GitHub
commit e38e6a4490
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
nixos/modules/virtualisation/oci-containers.nix
View File

@ -148,12 +148,17 @@ let
somewhere within the specified `hostPort` range. somewhere within the specified `hostPort` range.
Example: `1234-1236:1234/tcp` Example: `1234-1236:1234/tcp`
Publishing a port bypasses the NixOS firewall. If the port is not
supposed to be shared on the network, make sure to publish the
port to localhost.
Example: `127.0.0.1:1234:1234`
Refer to the Refer to the
[Docker engine documentation](https://docs.docker.com/engine/reference/run/#expose-incoming-ports) for full details. [Docker engine documentation](https://docs.docker.com/engine/reference/run/#expose-incoming-ports) for full details.
''; '';
example = literalExpression '' example = literalExpression ''
[ [
"8080:9000" "127.0.0.1:8080:9000"
] ]
''; '';
}; };