Detections
Analytics
5.29 Do not use Docker's default bridge docker0
Information
Do not use Docker's default bridge docker0. Use docker's user-defined networks forcontainer networking.Docker connects virtual interfaces created in the bridge mode to a common bridge called
docker0. This default networking model is vulnerable to ARP spoofing and MAC flooding
attacks since there is no filtering applied.
Solution
Follow Docker documentation and setup a user-defined network. Run all the containers inthe defined network.Impact-You have to manage the user-defined networks.Default Value-By default, docker runs containers on its docker0 bridge.
See Also
Item Details
Audit Name: CIS Docker 1.12.0 v1.0.0 L2 Docker
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-7b.
Plugin: Unix
Control ID: bcc6943303ac5c5ed2e7b45fce66507e0f97b90225a2d8ad90b1906f2f7dbd17