Why does the Docker one click image expose the docker ports via UFW

In the default configuration of the one-click 18.04 docker image the ports 2375 & 2376 are exposed via UFW.

Is there any reason for this? By default, docker isn’t listening on those ports. And even if it were it seems highly questionable opening up it’s API to the world by default.


I was just about to ask the same thing. But when I run an nmap scan it returns ‘filtered’ instead of open for some reason.

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

This comment has been deleted

Is the API protected via TLS authentication by default? Otherwise that’s trouble waiting to happen.