Docker and Fail2Ban

Sergio David Rodrigues


Docker uses NAT and FORWARD comes before INPUT,  so it never reaches the fail2ban iptables rules

Change your jail.local global or for each rule

chain = INPUT

replace with

chain = CATTLE_FORWARD

That should now block