How to make Docker container accessible to other network machines through IP?

一笑奈何 提交于 2019-11-29 14:38:29

问题


I need to create some docker containers that must be accessed by other computers at the same network.

Problem is that when I create the container, Docker gets IP addresses valid only within the host machine.

I already took a look at Docker documentation (Networking) but nothing has worked.

If I run ifconfig on my machine my IP address is 172.21.46.149. When I go inside the container (Ubuntu) and run ifconfig the IP address is 172.17.0.2. I need Docker to get, for example, 172.21.46.150.

How can I do it?


回答1:


You have to create a bridge on your host and assign that bridge to the container. This may help you: https://jpetazzo.github.io/2013/10/16/configure-docker-bridge-network/




回答2:


Multi-host access involves an overlay network with service discovery.
See docker/networking:

An overlay network requires a key-value store. The store maintains information about the network state which includes discovery, networks, endpoints, IP Addresses, and more.
The Docker Engine currently supports Consul, etcd, ZooKeeper (Distributed store), and BoltDB (Local store) key-value store stores.
This example uses Consul.

If if your your nodes (the other computers across the same network) runs their docker daemon with a reference to that key-value store, they will be able to communicate with containers from other nodes.

DOCKER_OPTS="-H tcp://0.0.0.0:2375 -H unix:///var/run/docker.sock --cluster-store=consul://<NODE-0-PRIVATE-IP>:8500/network --cluster-advertise=eth0:2375"

You just need to create an overlay network:

 docker network create -d overlay --subnet=10.10.10.0/24 RED

(it will be available in all computers because of the key-value store)

And run your containers on that network:

docker run -itd --name container1 --net RED busybox



回答3:


Docker containers can easily be accessed by other network node when a container:port is published through a host:port.

This is done using the -p docker-run option. Here is the sum-up of the man-page ($man docker-run gives more details and example that I won't copy/paste):

   -p, --publish=[]
      Publish a container's port, or range of ports, to the host.

See the doc online. This question/answer could be interesting to read too.

Basically:

docker run -it --rm -p 8085:8080 my_netcat nc -l -p 8080

Would allow LAN nodes to connect to the docker-host-ip:8085 and discuss with the netcat command.



来源:https://stackoverflow.com/questions/35702864/how-to-make-docker-container-accessible-to-other-network-machines-through-ip

易学教程内所有资源均来自网络或用户发布的内容,如有违反法律规定的内容欢迎反馈
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!