https://bugzilla.redhat.com/show_bug.cgi?id=1033606
--- Comment #36 from Lokesh Mandvekar lsm5@redhat.com --- So, this service file should work (works for me) even if firewalld isn't present on the system:
[Unit] Description=Docker container management daemon Wants=firewalld.service After=firewalld.service
[Service] Type=simple ExecStartPre=/usr/sbin/sysctl -w net.ipv4.ip_forward=1 net.ipv6.conf.all.forwarding=1 ExecStart=/usr/bin/docker -d ExecStartPost=firewall-cmd --add-masquerade Restart=on-failure
[Install] WantedBy=multi-user.target
Comments?