Firewall rules for Docker subnets?

Currently reading
Firewall rules for Docker subnets?


I am trying to utilize the firewall on my ds918+ to limit access to ports on my synology to static ranges within 192.168 and have run into an issue were in order to get my docker containers to play nice with each other I have had to unblock their subnets completely (IP 172.17 and 172.18). I'm not sure if I am more worried about the docker containers than the various IOT devices and printers that are plugged in but I certainly do not need them to have access to management and ssh. All of my containers are in the 32400-32600 range, anybody have a ruleset that works for this, or a thought as to how this could be happening? I did try unblocking port ranges but never did find a group or combination of ports that worked.



Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Similar threads

Hello! Yes I did indeed find the problem, there are some special firewall rules that you need to make for...

Welcome to! is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Trending threads