UFW blocking Mojang auth servers
After using { "iptables" : false } in /etc/docker/daemon.json my pterodactyl instance isnt able to connect to the mojang auth servers anymore.
Which ports, ips or protocols do I need to open?
I chose to implement above rule because the docker containers were modifying iptables rules and allowing the port scanners through to the server even though I explicitly denied them in UFW.
8 Replies
Thanks for asking your question!
Once you have finished, please close your thread.
Make sure to provide as much helpful information as possible such as logs/what you tried and what your exact issue is
command to close
/close
!close
!solved
Requested by minim4dness#0
Please use a paste service instead!
Paste services are more mobile friendly and easier to read than just posting a log file
message.txt
Requested by minim4dness#0
theres a specific command u need to use to make iptables work with docker.
sudo iptables -I DOCKER-USER -s 127.0.0.0/0 -j DROP
change -s to the ip
I know, it works fine for everything else. I can even see the server online. It just times out as if the auth servers were down since the container cant seem to reacht them
Even though I allowed dns requests from that container
if u use the other command, would it be simpler to just remove ur change?
it was working before, and now u have a way to block server scanners
-A ufw-user-input -s 193.35.18.0/24 -j DROP
-A ufw-user-input -s 45.128.232.0/24 -j DROP
-A ufw-user-input -s 217.138.254.0/24 -j DROP
-A ufw-user-input -s 132.145.71.44/32 -j DROP
-A ufw-user-input -s 149.102.143.151/32 -j DROP
-A ufw-user-input -s 162.33.178.0/24 -j DROP
-A ufw-user-input -s 45.134.142.0/24 -j DROP
-A ufw-user-input -s 198.54.130.0/24 -j DROP
-A ufw-user-input -s 143.244.47.0/24 -j DROP
-A ufw-user-input -s 162.33.178.237/32 -j DROP
So replace ufw-user-input with the docker username?
Those rules already exist
u need to use DOCKER-USER