[GH-ISSUE #82] [Suggestion] Access to VPN-hosts from outside the Docker #70

New issue

Closed

opened 2026-03-02 07:11:30 +03:00 by kerem · 1 comment

kerem commented

2026-03-02 07:11:30 +03:00

Owner

Originally created by @zdzichu6969 on GitHub (Jul 17, 2018).
Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/82

Access to VPN-hosts from outside the Docker

iptables rule in run.sh:

iptables -I FORWARD 7 -i eth+ -o ppp+ -j ACCEPT

Originally created by @zdzichu6969 on GitHub (Jul 17, 2018). Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/82 Access to VPN-hosts from outside the Docker iptables rule in run.sh: > iptables -I FORWARD 7 -i eth+ -o ppp+ -j ACCEPT

kerem closed this issue

2026-03-02 07:11:30 +03:00

kerem commented

2026-03-02 07:11:31 +03:00

Author

Owner

@hwdsl2 commented on GitHub (Sep 7, 2018):

@zdzichu6969 Hello! Thanks for the suggestion. However, while the IPTables rule you suggested can enable access to VPN clients from outside Docker, it also exposes VPN clients to potentially malicious traffic initiated from the Internet. Note that by default, the IPTables rules in this image only allow "RELATED, ESTABLISHED" traffic from eth+ to ppp+.

@hwdsl2 commented on GitHub (Sep 7, 2018): @zdzichu6969 Hello! Thanks for the suggestion. However, while the IPTables rule you suggested can enable access to VPN clients from outside Docker, it also exposes VPN clients to potentially malicious traffic initiated from the Internet. Note that by default, the IPTables rules in this image only allow "RELATED, ESTABLISHED" traffic from `eth+` to `ppp+`.

No labels

bug

pull-request

question

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/docker-ipsec-vpn-server#70

No description provided.

Rows
Columns