Docker and IPtables

TL;DR; By default, docker daemon appends iptables rules for forwarding. For this, it uses a filter chain named DOCKER.

Chain FORWARD (policy DROP)
target     prot opt source               destination
DOCKER     all  --  0.0.0.0/0            0.0.0.0 ...

Getting started with LXC on Debian Wheezy

EDIT: Deprecated article. I think libvirt is overkill in this case. I plan to update the article with bridge-utils in some time.

LXC (LinuX Containers) is an operating system-level virtualization method for running multiple isolated Linux systems (containers) on a ...