FINALLY managed to punch a hole in the #firewall that allowed the #docker image to make DNS calls outward so I can actually federate this instance!
(really wanted to punch docker)
Problem was I had to restart the docker service after updating the firewall rules.
Comment by @ikke@ipv6.social:
if you combine awall and docker, make sure you set the awall_dedicated_chains variable to true. This will make sure awall does not interfere with the rules that docker adds. See https://gitlab.alpinelinux.org/alpine/awall#control-variables
My response:
Thank you! I suspect you’ve just saved me a future headache the next time something restarts!