Book Image

Docker Networking Cookbook

Book Image

Docker Networking Cookbook

Overview of this book

Networking functionality in Docker has changed considerably since its first release, evolving to offer a rich set of built-in networking features, as well as an extensible plugin model allowing for a wide variety of networking functionality. This book explores Docker networking capabilities from end to end. Begin by examining the building blocks used by Docker to implement fundamental containing networking before learning how to consume built-in networking constructs as well as custom networks you create on your own. Next, explore common third-party networking plugins, including detailed information on how these plugins inter-operate with the Docker engine. Consider available options for securing container networks, as well as a process for troubleshooting container connectivity. Finally, examine advanced Docker networking functions and their relevant use cases, tying together everything you need to succeed with your own projects.

Related Content you might be interested in

Current Title:

Small book image
Docker Networking Cookbook
Nov, 2016 | 378 pages
No titles found
Table of Contents (18 chapters)
Docker Networking Cookbook
Docker Networking Cookbook
Credits
Credits
About the Author
About the Author
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Linux Networking Constructs
Linux Networking Constructs
Introduction
Working with interfaces and addresses
Configuring Linux host routing
Exploring bridges
Making connections
Exploring network namespaces
2
Configuring and Monitoring Docker Networks
Configuring and Monitoring Docker Networks
Introduction
Verifying host-level settings that impact Docker networking
Connecting containers in bridge mode
Exposing and publishing ports
Connecting containers to existing containers
Connecting containers in host mode
Configuring service-level settings
3
User-Defined Networks
User-Defined Networks
Introduction
Viewing the Docker network configuration
Creating user-defined networks
Connecting containers to networks
Defining a user-defined bridge network
Creating a user-defined overlay network
Isolating networks
4
Building Docker Networks
Building Docker Networks
Introduction
Manually networking containers
Specifying your own bridge
Using an OVS bridge
Using an OVS bridge to connect Docker hosts
OVS and Docker together
5
Container Linking and Docker DNS
Container Linking and Docker DNS
Introduction
Verifying a host-based DNS configuration inside a container
Overriding the default name resolution settings
Configuring links for name and service resolution
Leveraging Docker DNS
Creating Docker DNS aliases
6
Securing Container Networks
Securing Container Networks
Introduction
Enabling and disabling ICC
Disabling outbound masquerading
Managing netfilter to Docker integration
Creating custom iptables rules
Exposing services through a load balancer
7
Working with Weave Net
Working with Weave Net
Introduction
Installing and configuring Weave
Running Weave-connected containers
Understanding Weave IPAM
Working with WeaveDNS
Weave security
Using the Weave network plugin
8
Working with Flannel
Working with Flannel
Introduction
Installing and configuring Flannel
Integrating Flannel with Docker
Using the VXLAN backend
Using the host gateway backend
Specifying Flannel options
9
Exploring Network Features
Exploring Network Features
Introduction
Working with prerelease versions of Docker
Understanding MacVLAN interfaces
Working with the Docker MacVLAN network driver
Understanding IPVLAN interfaces
Working with the Docker IPVLAN network driver
Tagging VLAN IDs with MacVLAN and IPVLAN networks
10
Leveraging IPv6
Leveraging IPv6
Introduction
IPv6 command-line basics
Enabling IPv6 capabilities in Docker
Working with IPv6-enabled containers
Configuring NDP proxying
User-defined networks and IPv6
11
Troubleshooting Docker Networks
Troubleshooting Docker Networks
Introduction
Using tcpdump to verify network paths
Verifying VETH pairs
Verifying published ports and outbound masquerading
Verifying name resolution
Building a test container
Resetting the local Docker network database
Index
Index

Specifying Flannel options

In addition to configuring different backend types you can also specify other options both through etcd as well as through the Flannel client itself. These options allow you to limit the IP allocation scopes as well as specify a specific interface to use as a Flannel node's external IP endpoint. In this recipe, we'll review the additional configuration options available to you both locally and globally.

Getting ready

We will keep building off the lab in the previous chapter where we configured the host gateway backend. However, the lab topology is going to revert to the previous configuration with Docker hosts docker3 and docker4 being in the 192.168.50.0/24 subnet:

Once you have your hosts configured in this topology, we'll want to wipe out the Flannel configuration. To do that, perform these steps:

  • On the host running the etcd service:

    sudo systemctl stop etcd
sudo rm -rf /var/lib/etcd/default 
sudo systemctl start etcd

  • On all the hosts running the Flannel service...

Previous Section
End of Chapter 8
Next Chapter