{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Luminary・发光体 的问题《Unable to access docker containers from host over》','https://www.manongdao.com/q-695146.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
In my Linux network I am unable to reach my docker containers from the host they are running on, over a dedicated macvlan network. All other connections from to this macvlan network are fine.
So basically the setup is:
DOCKER1 eth0 172.0.0.1 (default)
| eth1 10.0.0.1 (macvlan)
CONTAINER1 10.0.0.11 (macvlan)
DOCKER2 eth0 172.0.0.2 (default)
| eth1 10.0.0.2 (macvlan)
CONTAINER2 10.0.0.12 (macvlan)
- Host DOCKER1 cannot reach CONTAINER1
- Host DOCKER2 cannot reach CONTAINER2
- Host DOCKER1 can reach DOCKER2
- Host DOCKER1 can reach CONTAINER2
- Host DOCKER2 can reach DOCKER1
- Host DOCKER2 can reach CONTAINER1
- All containers can reach each other
- All other devices in the physical network can reach all
- All can reach the gateway/internet
How can I make the host reach itss own containers over the macvlan network?
I need specific applications to interact over this network, so using docker exec won't solve my problem ;).
The host cannot communicate with local macvlan devices without special support from an external switch. See e.g. this Red Hat documentation which discusses the use of macvlan devices for virtual machines: