Jump to content

Containers on different networks can access the host and other containers?


Recommended Posts

Following some guides on youtube, im trying to setup some more security measures, ending with putting containers in different networks, doing

docker network create proxy

 

creates the proxy network, that when a container is in can still access all other containers, and the host. heres what happens when i use nc to probe the ports:

 

443 is a docker container set to host, 8443 is the unraid webui, and 7443 is another container set to bridge, is this normal behaviour? I thought that creating another network grants the containers in it no access to any local networks, just the internet?

 

root@55f012343cc3:/# nc -v 192.168.1.2 443
Connection to 192.168.1.2 443 port [tcp/https] succeeded!
^C
root@55f012343cc3:/# nc -v 192.168.1.2 8443
Connection to 192.168.1.2 8443 port [tcp/*] succeeded!
^C
root@55f012343cc3:/# nc -v 192.168.1.2 7443
Connection to 192.168.1.2 7443 port [tcp/*] succeeded!
^C
root@55f012343cc3:/# 

 

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...