| ▲ | drnick1 2 hours ago | |
> but there are still a million other pitfalls to fall in to if you are not a full time system admin. Pro tip: After you configure a new service, review the output of ss -tulpn. This will tell you what ports are open. You should know exactly what each line represents, especially those that bind on 0.0.0.0 or [::] or other public addresses. The pitfall that you mentioned (Docker automatically punching a hole in the firewall for the services that it manages when an interface isn't specified) is discoverable this way. | ||
| ▲ | jsrcout 2 hours ago | parent [-] | |
Thanks, didn't know about this one. | ||