From 08e3024ad88c37b43c71da9e1a823bcac3f76b8d Mon Sep 17 00:00:00 2001
From: kof <215098326@qq.com>
Date: Sat, 8 Sep 2018 13:29:37 +0800
Subject: [PATCH] =?UTF-8?q?=E3=80=90=E5=BC=80=E5=90=AF=E5=AE=B9=E5=99=A8?=
 =?UTF-8?q?=E5=88=B0=E5=A4=96=E9=83=A8=E7=9A=84=E8=AE=BF=E9=97=AE=E3=80=91?=
 =?UTF-8?q?=E6=9C=89=E4=BA=9Bissue=E6=8F=90=E5=88=B0=E6=97=A0=E6=B3=95?=
 =?UTF-8?q?=E5=8F=91=E9=80=81=E9=82=AE=E4=BB=B6=E5=A4=A7=E9=83=A8=E5=88=86?=
 =?UTF-8?q?=E9=83=BD=E6=98=AF=E8=BF=99=E4=B8=AA=E5=8E=9F=E5=9B=A0?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 README.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/README.md b/README.md
index b4314f7..dc971e1 100644
--- a/README.md
+++ b/README.md
@@ -278,6 +278,19 @@ git clone git@gitlab.example.com:myuser/awesome-project.git
 git clone ssh://git@gitlab.example.com:2222/myuser/awesome-project.git
 ```
 
+#### 开启容器到外部的访问
+
+默认情况下，从容器发送到默认网桥的流量，并不会被转发到外部。要开启转发，需要改变两个设置。这些不是 Docker 命令，并且它们会影响 Docker 主机的内核。
+这些设置在重新启动时失效，因此可能需要将它们添加到启动脚本中。
+
+```bash
+# 配置 Linux 内核来允许 IP 转发
+$ sysctl net.ipv4.conf.all.forwarding=1
+
+# 改变 iptables 的政策，FORWARD 政策从 DROP 变为 ACCEPT
+$ sudo iptables -P FORWARD ACCEPT
+```
+
 # 相关信息
 
 * GitLab Docker 相关操作请参考：<http://docs.gitlab.com/omnibus/docker/>