Red Hat Bugzilla – Bug 1250615
firewalld updates breaks connection between docker images
Last modified: 2015-08-06 07:39:16 EDT
Description of problem:
Upgrading to firewalld 0.3.14 within Fedora22 broken my test suite which uses docker. It seems that after the update firewalld is denying connections between docker images. That cost me a day of debugging of figuring why everything suddenly stopped working.
Not only I find that change absurd, but despite that, _this is not a change to be introduced within the lifecycle of Fedora 22_. Please undo this policy and let F22 work as it initially did. If you need to introduce such a change please discuss it in the fedora security list and introduce a change request for F23 or F24.
Version-Release number of selected component (if applicable):
0.3.14.2-2.fc22 is broken
0.3.13 f22 works
Create two docker images and try connect to each other using TCP.
Connection is timed out.
As with F22 release, connection is established.
Please have a look at #1244124
I think this is the same issue. A reload or restart of firewalld results in loosing the firewall rules for the containers. This is also the case for an update of firewalld.
You are correct, a reboot using the new firewalld solved the issue. Sorry for the harsh language, the bug was written after a long day of debugging the issue.
*** This bug has been marked as a duplicate of bug 1244124 ***