stackoom
  简体   繁体   中英

Cannot access a Docker Swarm service through its published port on the host

 原文  2018-05-24 09:52:20       docker/ port/ docker-swarm

Question

I have deployed a Docker Swarm cluster on several machines and I am now trying to access to the server running in Docker from the host.

I use docker compose file to define my service and the exposed port appears when I inspect the service:

"Endpoint": {
        "Spec": {
            "Mode": "vip",
            "Ports": [
                {
                    "Protocol": "tcp",
                    "TargetPort": 27017,
                    "PublishedPort": 3017,
                    "PublishMode": "host"
                }
            ]
        },
        "Ports": [
            {
                "Protocol": "tcp",
                "TargetPort": 27017,
                "PublishedPort": 3017,
                "PublishMode": "host"
            }
        ],
        "VirtualIPs": [
            {
                "NetworkID": "**********",
                "Addr": "10.0.0.34/24"
            }
        ]
    }

I use host mode because the service is constrained to run on a particular machine, and I want it accessible only from this machine.

But when I list the processes listening on ports on the host machine, the port doesn't appear.

And of course I cannot connect to the server from the host through the exposed port.

I am using iptables as firewall and restrains as much as possible the open ports, but the Docker Swarm needed ones are opened.

Here is my docker-compose.yml file:

version: '3.4'
services:
  mongo-router:
    image: mongo
    networks:
      - mongo-cluster
    volumes:
      - db-data-router:/data/db
      - db-config-router:/data/configdb
    ports:
      - target: 27017
        published: 3017
        protocol: tcp
        mode: host
    deploy:
      placement:
        constraints:
          - node.labels.mongo.router == true
    command: mongos --configdb cnf/mongodb-cnf_mongo-cnf-1:27017,mongodb-cnf_mongo-cnf-2:27017,mongodb-cnf_mongo-cnf-3:27017

volumes:
  db-data-router:
  db-config-router:

networks:
  mongo-cluster:
    external: true

The network is an overlay network on which all services are subscribing.

1 answers

solution1
 0  2020-03-27 13:59:12

I had a similar issue. After installing hyper-v feature on windows (even though the cpu did not support hyper-v) I was able to access published ports from the host (even in ingress mode).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Docker Service in Swarm cannot connect to AWS RDS when a port is published Docker Swarm Access Container to Container on Published Port? Cannot access port published in a Docker custom bridge network from the host docker swarm published port range Communicating with Docker Service through Published Port Published Service not reachable on Docker Swarm Cannot access HTTP endpoint of a service in a Docker Swarm Docker 1.12 Swarm Overlay Network Published Port docker swarm access service Docker swarm service port not exposed
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM