Docker and iptables

Hi,

Even if the question has been multiple of times answerd, I give a new try.
i’ve made a script which reload iptables at each startup of my host and I try to understand why over 2 participants the call is out of order.
Here it is :

*filter
:INPUT ACCEPT [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
:FILTERS - [0:0]
:DOCKER-USER - [0:0]
:DOCKER - [0:0]

-F INPUT
-F DOCKER-USER
-F DOCKER
-F FILTERS


-A INPUT -i lo -j ACCEPT
-A INPUT -j FILTERS

-A DOCKER-USER -i eno1 -j FILTERS
-A DOCKER -i eno1 -j FILTERS

-A FILTERS -m state --state ESTABLISHED,RELATED -j ACCEPT

#allow 80 and 443
-A FILTERS -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
-A FILTERS -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT
#https://jitsi.github.io/handbook/docs/devops-guide/devops-guide-docker
-A FILTERS -m state --state NEW -m tcp -p tcp --dport 4443 -j ACCEPT
-A FILTERS -m state --state NEW -m udp -p tcp --dport 10000 -j ACCEPT

-A FILTERS -j REJECT --reject-with icmp-host-prohibited

COMMIT

and thus :
iptables-restore **-n** myfile.ncf

only accept 80,443,4443 and udp 10000. I think it is the configuration required…
Why does this configuration could fails with more than 3 users ?

Thanks for your help :slight_smile: