hello again. using discourse running via docker on centos 7.4. i use csf via webmin as my firewall frontend.
so i’ve noticed that allowing csf to auto-update itself forces a csf restart each update which then breaks the docker’s networking until i restart docker, to have its own iptables rules re-applied. which ultimately causes issues with my instance of discourse.
i’ve read about using the built in csf function csfpre.sh to define rules to be automatically applied at each csf restart.
how can i interpret the rules precisely as docker applies them to place into csfpre.sh? any suggestions? Thanks.