Statically disable iptables management for docker

Docker 1.13 changes the behaviour of iptables defaults from allow to drop. This patch disables docker's iptables management as it was in Docker 1.12 [1] [1] https://github.com/docker/docker/pull/28257 Signed-off-by: Sergii Golovatiuk <sgolovatiuk@mirantis.com>
2017-02-18 00:33:48 +01:00 · 2017-02-18 00:33:48 +01:00 · ebf9daf73e
parent 0afadb9149
commit ebf9daf73e
1 changed files with 1 additions and 1 deletions
--- a/inventory/group_vars/all.yml
+++ b/inventory/group_vars/all.yml
@ -195,7 +195,7 @@ docker_daemon_graph: "/var/lib/docker"
 ## This string should be exactly as you wish it to appear.
 ## An obvious use case is allowing insecure-registry access
 ## to self hosted registries like so:
-docker_options: "--insecure-registry={{ kube_service_addresses }} --graph={{ docker_daemon_graph }}"
+docker_options: "--insecure-registry={{ kube_service_addresses }} --graph={{ docker_daemon_graph }} --iptables=false"
 docker_bin_dir: "/usr/bin"

 ## Uncomment this if you want to force overlay/overlay2 as docker storage driver