How to solve the problem of swarm docker port being blocked-Docker-php.cn

Home

Operation and Maintenance

Docker

How to solve the problem of swarm docker port being blocked

藏色散人

Jan 20, 2022 pm 02:29 PM

docker

Swarm docker port unreachable solution: 1. Edit the configuration file and add the configuration "net.ipv4.ip_forward=1"; 2. Restart the network through "systemctl restart network".

How to solve the problem of swarm docker port being blocked

The operating environment of this article: centOS6.8 system, Docker version 18.09.x, Dell G3 computer.

How to solve the problem of swarm docker port being blocked? docker swarm network problem

Problem:

The internal network of the docker host is normal, but the connection with other hosts fails. Other hosts cannot connect to the port mapped on the docker host, and the internal network of docker cannot be connected. external host.

The server environment is as follows:

The system is centos
docker info

WARNING: IPv4 forwarding is disabled
WARNING: bridge-nf-call-iptables is disabled
WARNING: bridge-nf-call-ip6tables is disabled

Solution

Edit configuration file

vim /etc/sysctl.conf

Add configuration

net.bridge.bridge-nf-call-ip6tables=1
net.bridge.bridge-nf-call-iptables=1
net.bridge.bridge-nf-call-arptables=1
net.ipv4.ip_forward=1

Executesysctl -p Take effect

Restart the network

systemctl restart network

Check the docker info again, the warning disappears, and the docker network on the host returns to normal.

Key point, for cloud servers

The server I use is Alibaba Cloud Server
If your cluster uses the default port 4789, then you may encounter the same problem as me The problem.

There is this sentence in Alibaba Cloud's help documentation:

Before adding UDP monitoring, pay attention to the following restrictions:
There are three ports for UDP monitoring: 250, 4789 and 4790 The port is reserved for the system and is not open to the public for the time being.
Details

In versions 19.03 and later, docker adds the –data-path-port uint32 configuration item on top of swarm init to change the VXLAN port of docker swarm.
The problem was successfully solved after modifying the port

sudo docker swarm init --data-path-port 5789

Other problems

Check the docker log (journalctl -u docker -n 20 -f) and found:

level=error msg="error reading the kernel parameter net.ipv4.vs.expire_nodest_conn" 
error="open /proc/sys/net/ipv4/vs/expire_nodest_conn: no such file or directory"

This occurs because the host does not load the ip_vs module. Just restart docker after loading the ip_vs module on each node. [Recommended learning: "docker video tutorial"]

modprobe ip_vs
service docker restart

The above is the detailed content of How to solve the problem of swarm docker port being blocked. For more information, please follow other related articles on the PHP Chinese website!

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

docker中rm和rmi有什么区别Jul 14, 2022 am 11:02 AM

docker中rm和rmi的区别：rm命令用于删除一个或者多个容器，而rmi命令用于删除一个或者多个镜像；rm命令的语法为“docker rm [OPTIONS] CONTAINER [CONTAINER...]”，rmi命令的语法为“docker rmi [OPTIONS] IMAGE [IMAGE...]”。

docker官方镜像有哪些May 12, 2022 pm 02:23 PM

docker官方镜像有：1、nginx，一个高性能的HTTP和反向代理服务；2、alpine，一个面向安全应用的轻量级Linux发行版；3、busybox，一个集成了三百多个常用Linux命令和工具的软件；4、ubuntu；5、PHP等等。

docker容器重启后数据会丢吗Jun 17, 2022 am 10:41 AM

docker容器重启后数据会丢失的；但是可以利用volume或者“data container”来实现数据持久化，在容器关闭之后可以利用“-v”或者“–volumes-from”重新使用以前的数据，docker也可挂载宿主机磁盘目录，用来永久存储数据。

docker是免费的吗Jul 08, 2022 am 11:21 AM

docker对于小型企业、个人、教育和非商业开源项目来说是免费的；2021年8月31日，docker宣布“Docker Desktop”将转变“Docker Personal”，将只免费提供给小型企业、个人、教育和非商业开源项目使用，对于其他用例则需要付费订阅。

docker能安装oracle吗Jul 08, 2022 pm 04:07 PM

docker能安装oracle。安装方法：1、拉取Oracle官方镜像，可以利用“docker images”查看镜像；2、启动容器后利用“docker exec -it oracle11g bash”进入容器，并且编辑环境变量；3、利用“sqlplus /nolog”进入oracle命令行即可。

docker存储空间不足怎么办Jul 22, 2022 pm 03:44 PM

解决方法：1、停止docker服务后，利用“rsync -avz /var/lib/docker 大磁盘目录/docker/lib/”将docker迁移到大容量磁盘中；2、编辑“/etc/docker/daemon.json”添加指定参数，将docker的目录迁移绑定；3、重载和重启docker服务即可。

什么是docker最早支持的存储引擎May 12, 2022 pm 03:27 PM

AUFS是docker最早支持的存储引擎。AUFS是一种Union File System，是文件级的存储驱动，是Docker早期用的存储驱动，是Docker18.06版本之前，Ubuntu14.04版本前推荐的，支持xfs、ext4文件。

docker容器管理ui有哪些May 11, 2022 pm 03:39 PM

容器管理ui工具有：1、Portainer，是一个轻量级的基于Web的Docker管理GUI；2、Kitematic，是一个GUI工具，可以更快速、更简单的运行容器；3、LazyDocker，基于终端的一个可视化查询工具；4、DockStation，一款桌面应用程序；5、Docker Desktop，能为Docker设置资源限制，比如内存，CPU，磁盘镜像大小；6、Docui。

See all articles