9Oca
Network security in Docker containers
I am currently involved in enhancing the security of a Docker-based web application.The application follows a traditional three-tier architecture, comprising a web app, an application layer, and a database—all operating on the same VM. A firewall and a WAF in reverse proxy are filtering the content before it reaches the Docker environment. However, inside the docker container we have no visibility over the traffic. I know that, from a classic secure architecture design, each level (web server, app server, database) should be separated and filtered by firewall and IPS. How is this strategy applying here? How can I gain visibility and does this model applies here anymore?