Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [docker-networking]

68 questions
6
votes
0 answers

Docker on Ubuntu Server (Rasberry Pi) failed to create endpoint on network bridge, operation not supported

I am using Ubuntu 21.10 on a Rasberry Pi 4 (aarch64) and when I try to run a Docker (using version 20.10.7) container it returns the following error message: docker: Error response from daemon: failed to create endpoint goofy_hypatia on network…
Potatoes
  • 69
  • 1
  • 3
6
votes
2 answers

Why is firewalld allowing public traffic to my non-public ports, bound to Docker containers?

I'm trying to implement a pretty simple firewall in Fedora, where the public internet can access SSH, HTTP, HTTPS and Cockpit, but nothing else. Meanwhile, the servers run microservices via Docker that can talk to each other on ports 8000-8999. I…
RustyTheBoyRobot
  • 191
  • 1
  • 8
4
votes
1 answer

Docker bridge network shadows IP of SSH client, how to recover gracefully?

We're running a RHEL 7 VM with Docker to host a couple of internal services. Last time I ran docker-compose up to spin up a new Docker container, I lost my SSH connection to the server and could also not re-establish it. A colleague was able to…
Martin Wurm
  • 51
  • 3
3
votes
1 answer

What routing algorithm does the docker mesh use?

We want to know what algorithm the Docker mesh uses to route requests to containers. Here's why: We deploy our applications to self-hosted docker swarms. We use the docker routing mesh to direct traffic to the individual nodes, like this: internet…
Wayne Conrad
  • 675
  • 1
  • 7
  • 20
3
votes
2 answers

Docker Swarm. Containers in one overlay network but on different nodes can't reach each other via tcp

I have a docker swarm cluster with 12 nodes. Containers deployed on single node can reach each other fine via overlay network, but when they are deployed on different nodes, there are connectivity issue: hostnames are resolved and I can ping one…
hattivatt
  • 71
  • 1
  • 4
2
votes
0 answers

Docker Swarm over IPSec VTI (Unifi site-to-site)

I have setup a Docker Swarm using 3 servers; Master node Home - local IP 192.168.178.250 Worker node 1 Remote - local IP 10.10.10.200 Worker node 2 Remote - local IP 10.10.10.250 Both sites have a Unifi gateway (USG Pro/USG) and I've setup a…
GRX
  • 71
  • 4
2
votes
1 answer

Docker compose - disable default gateway route

Is it possible to prevent docker from defining default route when using docker-compose yaml file? If my docker-compose.yaml defines network ipam with default driver and any subnet, seams like docker (or docker compose) automatically assigns default…
Boris
  • 173
  • 1
  • 10
2
votes
2 answers

can't initialize iptables table 'nat' under qemu

I am facing an issue while starting docker inside s390x container under qemu on Ubuntu 18.04 host running on amd64. Steps followed (On amd64 host): docker run --rm --privileged multiarch/qemu-user-static --reset -p yes docker run --privileged -it…
Nayana
  • 21
  • 1
  • 2
2
votes
1 answer

Accessing different host's docker containers via portainer

I have a few containers (running various services) on my ubuntu server and i manage those containers via portainer, which is also one of these containers. I would like to also manage a pihole container (running on a different server (raspberry pi))…
Thefeli73
  • 23
  • 2
2
votes
2 answers

Unwanted masquerading in docker container

Although I have not added any iptables rules on the host or the two containers, packets from one docker container are modified and given the IP of the docker network gateway: Container 1: bash-5.0# ip route default via 172.16.238.2 dev…
Trigus
  • 71
  • 8
1
vote
0 answers

nftables rules to allow networked Docker containers on the same host to use their public URLs

I am running two Docker containers on the same host living in Docker the same bridge network, and I have nftables set up to restrict more or less all traffic (rules below). My only problem (that I know of) is that traffic from one container to the…
alfonx
  • 250
  • 5
  • 10
1
vote
0 answers

Override hostname in all docker containers

My server has got a publicly accessible hostname, which obviously points to the public ip address of the network. This works great to access the server from elsewhere. When using this hostname/public ip address internally... nothing will happen,…
Jelle De Loecker
  • 1,094
  • 6
  • 17
  • 30
1
vote
0 answers

Restricting docker zone to a single IP with firewall-cmd

I'm trying to restrict my docker exposed ports to a sigle outside IP. docker (active) target: ACCEPT icmp-block-inversion: no interfaces: br-27117bc1fd93 br-2905af95cf3a br-53c93737f17d br-69f2fcdc6f01 br-b4b3347f7b9c br-b932d5e56d55…
Alexandre Giroud-bit
  • 11
  • 1
1
vote
0 answers

Docker Swarm Ports becomes non responsive

I am running a swarm cluster with only 3 masters. I have a few ports exposed across various services in the swarm. And an Nginx service running in all 3 nodes acts as a reverse proxy. When I start the stacks, all these ports are accessible and…
Lokesh Waran
  • 11
  • 3
1
vote
0 answers

Link docker container to a specific network interface

I am trying to start OpenVPN server for accessing resources on VPC network. I have two network interfaces, public eth0 and VPC eth1. And an OpenVPN working in a docker container. But I want to use this VPN only to access resources over eth1…
Danil
  • 11
  • 1
1
2 3 4 5