Hexmos dropped udwall, a declarative firewall manager that finally makes UFW and Docker play nice. Docker’s notorious for bulldozing past UFW rules via iptables. udwall patches that hole.
It syncs rules across both, auto-reconciles changes, backs up configs, and plugs cleanly into Ansible. No more duct-tape scripts to keep your firewall from imploding mid-deploy.
