Docker Networking
Filter

Docker Networking

by Souy Soeng /
Share

Docker Networking

Docker networking allows containers to communicate with each other, with the host system, and with the outside world. By default, Docker provides several types of networks that can be used to manage container-to-container and container-to-host communications. Docker networking plays a critical role in multi-container applications, service discovery, and managing data traffic efficiently.

1. Types of Docker Networks

Docker provides several networking modes that can be used to configure how containers interact with each other and with the host system. Each network mode has specific use cases and behavior:

a. Bridge Network (Default)

  • Description: The default network mode for containers when none is specified.

  • Use Case: Suitable for single-host communication between containers.

  • How it works: Containers connected to the bridge network can communicate with each other but are isolated from the host network unless explicitly configured. The host machine can communicate with containers through port mappings (-p).

Example:

docker run --network bridge my-container

b. Host Network

  • Description: The container shares the host machine’s network stack, meaning it will use the host’s IP address and network interfaces.

  • Use Case: Suitable when you want the container to have the same network access as the host (e.g., high-performance applications, low-latency network).

  • How it works: Containers on the host network will be able to access all ports exposed by the host, but this network mode disables isolation between containers and the host.

Example:

docker run --network host my-container

c. None Network

  • Description: The container is completely isolated from networking. It doesn’t have an IP address, so it can’t communicate with any other containers or the outside world.

  • Use Case: Suitable for containers that don’t need any network connectivity (e.g., running batch jobs, isolated tasks).

  • How it works: The container doesn’t receive any network connectivity.

Example:

docker run --network none my-container

d. Custom Bridge Network

  • Description: Allows you to create a custom bridge network where containers are isolated from the host and each other (unless connected to the same custom bridge).

  • Use Case: Useful for multi-container applications, as containers on the same bridge network can easily communicate with each other using their container names as hostnames.

Example:

  1. Create a custom bridge network:

    docker network create --driver bridge my-custom-bridge

  2. Run containers on the custom network:

    docker run --network my-custom-bridge my-container

e. Overlay Network

  • Description: Used for multi-host networking, typically in Docker Swarm or Kubernetes setups. Containers on different Docker hosts can communicate through an overlay network.

  • Use Case: Suitable for Docker Swarm or multi-node environments where containers need to communicate across multiple physical hosts.

  • How it works: Docker uses VXLAN (a virtual extensible LAN) to create a virtual network that spans multiple hosts.

Example (Docker Swarm):

  1. Create an overlay network in Docker Swarm:

    docker network create --driver overlay my-overlay-network

  2. Deploy containers to the overlay network:

    docker service create --name my-service --network my-overlay-network my-image

f. Macvlan Network

  • Description: Provides each container with its own MAC address and IP address, allowing containers to appear as physical devices on the network.

  • Use Case: Useful for legacy applications that require direct network access or when you need containers to appear as individual devices on the network.

  • How it works: Containers on a Macvlan network are directly reachable from other devices on the physical network, which is useful for applications requiring the container to behave like a separate machine.

Example:

  1. Create a Macvlan network:

    docker network create -d macvlan --subnet=192.168.1.0/24 --gateway=192.168.1.1 my-macvlan

  2. Run a container on the Macvlan network:

    docker run --network my-macvlan my-container

2. Docker Network Commands

Here are some useful commands to manage Docker networks:

a. List Networks

To list all available networks:

docker network ls

b. Inspect a Network

To get detailed information about a specific network, including connected containers and settings:

docker network inspect <network_name>

c. Create a Network

To create a custom network, use:

docker network create --driver <driver> <network_name>

For example, to create a custom bridge network:

docker network create --driver bridge my-bridge-network

d. Connect a Container to a Network

To connect a running container to an existing network:

docker network connect <network_name> <container_name>

Example:

docker network connect my-bridge-network my-container

e. Disconnect a Container from a Network

To disconnect a container from a network:

docker network disconnect <network_name> <container_name>

Example:

docker network disconnect my-bridge-network my-container

3. Networking Use Cases

a. Container-to-Container Communication

By default, containers on the same bridge network can communicate with each other using their container names as hostnames.

Example:

docker run --network my-custom-bridge --name container1 my-image
docker run --network my-custom-bridge --name container2 my-image

In this case, container1 can reach container2 by simply using the hostname container2.

b. Service Discovery in Docker Swarm

In Docker Swarm, services are automatically discovered across nodes, and containers can reach services using service names.

Example:

docker service create --name web --publish 8080:80 --network my-overlay-network nginx
docker service create --name db --network my-overlay-network mysql

Here, the web service can reach the db service by using the service name db.

c. Multi-host Communication with Overlay Network

In a multi-host Docker Swarm setup, containers on different hosts can communicate with each other over an overlay network.

Example:

  1. Create an overlay network:

    docker network create --driver overlay my-overlay-network

  2. Deploy services that need to communicate:

    docker service create --name web --network my-overlay-network nginx
docker service create --name db --network my-overlay-network mysql

4. Common Networking Issues and Troubleshooting

  • Issue: Containers can't communicate with each other.

    • Solution: Ensure that both containers are on the same network. Use docker network inspect <network_name> to check the connections.

  • Issue: Ports are not accessible from outside the container.

    • Solution: Ensure that you have correctly mapped the container's ports to the host ports using the -p flag when running the container. Use docker ps to check port mappings.

  • Issue: Networking modes conflicting with the application.

    • Solution: For applications that require external network access, consider using the host or macvlan network modes. For isolated applications, use bridge or none modes.

5. Summary of Docker Network Modes

  • Bridge: Default network mode for containers on a single host.

  • Host: Shares the host machine’s network stack.

  • None: No networking; used for isolated containers.

  • Custom Bridge: Custom network with container-to-container communication on the same network.

  • Overlay: Multi-host communication, typically for Docker Swarm clusters.

  • Macvlan: Containers are assigned their own IP addresses, appearing as physical network devices.

Tag
Souy Soeng

Souy Soeng

Hi there 👋, I’m Soeng Souy (StarCode Kh)
-------------------------------------------
🌱 I’m currently creating a sample Laravel and React Vue Livewire
👯 I’m looking to collaborate on open-source PHP & JavaScript projects
💬 Ask me about Laravel, MySQL, or Flutter
⚡ Fun fact: I love turning ☕️ into code!

Post a Comment

CAN FEEDBACK
close