From e7ea45a8021b9c01ab2e5ea9b421f9ade724831b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Samuel=20P=C3=A9ch=C3=A8r?=
 <25039919+samuelpecher@users.noreply.github.com>
Date: Fri, 22 Aug 2025 17:05:17 +0100
Subject: [PATCH] Update firewall.sh for other docker bridge networks (#679)

Allow 172.16/12 prefix IPs for docker DNS as bridge networks will create another interface than docker0 within this CIDR prefix.
---
 install/development/firewall.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/install/development/firewall.sh b/install/development/firewall.sh
index ee6dfee8..3200c5cb 100644
--- a/install/development/firewall.sh
+++ b/install/development/firewall.sh
@@ -15,7 +15,7 @@ if ! command -v ufw &>/dev/null && -z "${OMARCHY_CHROOT_INSTALL:-}"; then
   sudo ufw allow 22/tcp
 
   # Allow Docker containers to use DNS on host
-  sudo ufw allow in on docker0 to any port 53
+  sudo ufw allow in proto udp from 172.16.0.0/12 to 172.17.0.1 port 53 comment allow-docker-dns
 
   # Turn on the firewall
   sudo ufw --force enable