Comments (7)
robmry
commented on June 16, 2024
Hi @iam-Justin - thank you for reporting this.
I think it's probably a problem with duplicate MAC addresses, introduced in 25.0.0 - does the description here fit with what you've seen? ... #47211 (comment)
from moby.
iam-Justin
commented on June 16, 2024
Hi @robmry, thank you for replying.
No, It's not a duplicate mac address issue. And I forgot to mention that the docker version of openSUSE is 24.0.5.
Can you reproduce the problem using the example above? I'm going to test it again under Debian.
from moby.
robmry
commented on June 16, 2024
Ah ok - thank you. I wasn't able to repro on Debian - but I just tried with openSUSE's docker 24.0.7, and the ping/curl commands failed.
For me, packets were dropped by firewalld. Because the network is 'internal', the bridge isn't added to firewalld's 'docker' zone.
I'm not yet sure why it's not added - manually adding it makes communication between the containers work, and external access is still blocked by the DOCKER-ISOLATION rules. So, I'm still investigating ...
from moby.
akerouanton
commented on June 16, 2024
@thespad Did you try to recreate the network and re-connect containers to it?
from moby.
thespad
commented on June 16, 2024
@thespad Did you try to recreate the network and re-connect containers to it?
Yes. it seems that anything internal in 172.19.0.0/16 fails to connect. Anything outside of that, say 172.20.1.128/28 or 172.22.0.32/29 is fine. I've even removed every docker network in that range, restarted the docker service, and recreated them. Same behaviour.
Edit: Actually it seems less consistent than that. I'm getting a slightly different issue in some other ranges where I can ping between containers but other traffic isn't being passed.
from moby.
robmry
commented on June 16, 2024
Hi @thespad ... is this behaviour different to what you've seen in a previous release? Which release was that? Could you confirm you're using firewalld on your host, and describe your setup - which of these address ranges are subnets for 'internal' bridge networks?
It sounds like you might be seeing a different problem to the one demonstrated by the example in this ticket, so it'd probably be best to raise a new issue and describe it fully there. If you can construct an example that reproduces the issue, using standard images, that'll make it easier to investigate.
from moby.
thespad
commented on June 16, 2024
Yeah I'll open a new issue to keep things tidy; it's different behaviour to previous releases as it broke a dozen containers that had been working fine on 24.x and older :)
from moby.
Related Issues (20)
- New feature gelf "raw" message processing HOT 2
- docker daemon fails to resolve hostnames when using local network DNS server HOT 12
- Docker pulled images are not visible to other containerd clients like nerdctl HOT 1
- False address already in use HOT 2
- [client-go] data race during APIVersionNegotiation HOT 4
- Docker 26 return IPv6 localhost (::1) even when ipv6 is disabled in /etc/docker/daemon.json HOT 2
- docker-proxy accepts connections before NAT rules are set up HOT 1
- Remove iptables rule for SCTP checksum fixup
- Use "hairpin mode" by-default / more often
- Support customizing containerd namespace HOT 3
- GPU-Partitioning
- Rootless docker cannot pull images built with Podman + Overlay - lsetxattr operation not supported HOT 1
- Volume driver plugin receives `Mount` requests with identical `ID`s when doing `docker container cp` on a running container HOT 3
- Intermittent failure to recognize IPv4 forwarding enabled at system boot HOT 8
- Document that tmpfs storage is charged to container memory usage HOT 3
- Redundant Blob Copying and Storing When Loading Images on the Same Host
- CSI volume bugs in Docker Swarm HOT 2
- containerd integration: Building image with Buildkit doesn't emit `image tagged` event
- Latest showing as v27.0.0 when Github repo shows v26.1.4 HOT 3
- Use default ULA prefix if fixed-cidr-v6 is not specified
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from moby.