Kingedgar Posted May 9, 2019 Share Posted May 9, 2019 (edited) Hello, I currently have an issue where I lost all network connectivity on the default docker bridge and all but one user defined network. I'm not sure where else to go but here are some commands I have used to try to diagnose. root@igbrain:~# docker run --rm busybox ip addr 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever 2: tunl0@NONE: <NOARP> mtu 1480 qdisc noop qlen 1000 link/ipip 0.0.0.0 brd 0.0.0.0 3: gre0@NONE: <NOARP> mtu 1476 qdisc noop qlen 1000 link/gre 0.0.0.0 brd 0.0.0.0 4: gretap0@NONE: <BROADCAST,MULTICAST> mtu 1462 qdisc noop qlen 1000 link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff 5: erspan0@NONE: <BROADCAST,MULTICAST> mtu 1450 qdisc noop qlen 1000 link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff 6: ip_vti0@NONE: <NOARP> mtu 1480 qdisc noop qlen 1000 link/ipip 0.0.0.0 brd 0.0.0.0 7: sit0@NONE: <NOARP> mtu 1480 qdisc noop qlen 1000 link/sit 0.0.0.0 brd 0.0.0.0 62: eth0@if63: <BROADCAST,MULTICAST,UP,LOWER_UP,M-DOWN> mtu 1500 qdisc noqueue link/ether 02:42:ac:11:00:04 brd ff:ff:ff:ff:ff:ff inet 172.17.0.4/16 brd 172.17.255.255 scope global eth0 valid_lft forever preferred_lft forever root@bigbrain:~# docker run --rm busybox ip route show default via 172.17.0.1 dev eth0 172.17.0.0/16 dev eth0 scope link src 172.17.0.4 root@bigbrain:~# docker run --rm busybox cat /etc/resolv.conf # Generated DNSv4 entries: nameserver 8.8.8.8 nameserver 8.8.8.4 root@bigbrain:~# docker run --rm busybox ping -c 4 4.2.2.2 PING 4.2.2.2 (4.2.2.2): 56 data bytes --- 4.2.2.2 ping statistics --- 4 packets transmitted, 0 packets received, 100% packet loss root@bigbrain:~# docker run --rm busybox nslookup google.com ;; connection timed out; no servers could be reached root@bigbrain:~# Unraid box as far as I can tell has the proper route. The only network that works is the one I created using the following: docker network create --driver=bridge --ip-range=192.168.0.64/27 --subnet=192.168.0.0/24 --gateway=192. 168.0.20--attachable -o "com.docker.network.bridge.name=br0" --aux-address="DefaultGatewayIPv4=192.168.0.1" br0 Any help is appreciated! bigbrain-diagnostics-20190509-0914.zip Edited June 1, 2019 by Kingedgar Solved by cleaning up /boot/config/docker.cfg Quote Link to comment
ken-ji Posted May 10, 2019 Share Posted May 10, 2019 you seem to have a 2nd NIC: eth1 ? or did you remove this at some point? run docker network list run docker network inspect [name of network] run iptables -vnL Quote Link to comment
Kingedgar Posted May 31, 2019 Author Share Posted May 31, 2019 On 5/9/2019 at 7:07 PM, ken-ji said: you seem to have a 2nd NIC: eth1 ? or did you remove this at some point? run docker network list run docker network inspect [name of network] run iptables -vnL eth 1 has been removed. I have even removed my docker.img and started fresh. docker network ls NETWORK ID NAME DRIVER SCOPE f8afde94aa10 br0 macvlan local 8c969749b346 bridge bridge local a27730112746 host host local e1070bb1cba6 none null local docker network inspect bridge [ { "Name": "bridge", "Id": "8c969749b3465dba3635d6f362b753d6e506d4a49239d049aad3db486478135e", "Created": "2019-05-31T10:56:48.357068466-05:00", "Scope": "local", "Driver": "bridge", "EnableIPv6": false, "IPAM": { "Driver": "default", "Options": null, "Config": [ { "Subnet": "172.17.0.0/16" } ] }, "Internal": false, "Attachable": false, "Ingress": false, "ConfigFrom": { "Network": "" }, "ConfigOnly": false, "Containers": {}, "Options": { "com.docker.network.bridge.default_bridge": "true", "com.docker.network.bridge.enable_icc": "true", "com.docker.network.bridge.enable_ip_masquerade": "true", "com.docker.network.bridge.host_binding_ipv4": "0.0.0.0", "com.docker.network.bridge.name": "docker0", "com.docker.network.driver.mtu": "1500" }, "Labels": {} } ] iptables -vnL Chain INPUT (policy ACCEPT 5542 packets, 690K bytes) pkts bytes target prot opt in out source destination 185K 287M LIBVIRT_INP all -- * * 0.0.0.0/0 0.0.0.0/0 Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 2 372 DOCKER-USER all -- * * 0.0.0.0/0 0.0.0.0/0 2 372 DOCKER-ISOLATION-STAGE-1 all -- * * 0.0.0.0/0 0.0.0.0/0 37638 5257K LIBVIRT_FWX all -- * * 0.0.0.0/0 0.0.0.0/0 37642 5258K LIBVIRT_FWI all -- * * 0.0.0.0/0 0.0.0.0/0 37646 5258K LIBVIRT_FWO all -- * * 0.0.0.0/0 0.0.0.0/0 1 290 ACCEPT all -- * docker0 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 0 0 DOCKER all -- * docker0 0.0.0.0/0 0.0.0.0/0 1 82 ACCEPT all -- docker0 !docker0 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- docker0 docker0 0.0.0.0/0 0.0.0.0/0 23754 3697K ACCEPT all -- * br0 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED 13890 1561K DOCKER all -- * br0 0.0.0.0/0 0.0.0.0/0 0 0 ACCEPT all -- br0 !br0 0.0.0.0/0 0.0.0.0/0 13890 1561K ACCEPT all -- br0 br0 0.0.0.0/0 0.0.0.0/0 Chain OUTPUT (policy ACCEPT 4291 packets, 1340K bytes) pkts bytes target prot opt in out source destination 133K 66M LIBVIRT_OUT all -- * * 0.0.0.0/0 0.0.0.0/0 Chain DOCKER (2 references) pkts bytes target prot opt in out source destination Chain DOCKER-ISOLATION-STAGE-1 (1 references) pkts bytes target prot opt in out source destination 1 82 DOCKER-ISOLATION-STAGE-2 all -- docker0 !docker0 0.0.0.0/0 0.0.0.0/0 2 372 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 Chain DOCKER-ISOLATION-STAGE-2 (1 references) pkts bytes target prot opt in out source destination 0 0 DROP all -- * docker0 0.0.0.0/0 0.0.0.0/0 1 82 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 Chain DOCKER-USER (1 references) pkts bytes target prot opt in out source destination 37646 5258K RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 Chain LIBVIRT_FWI (1 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- * virbr0 0.0.0.0/0 192.168.122.0/24 ctstate RELATED,ESTABLISHED 0 0 REJECT all -- * virbr0 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable Chain LIBVIRT_FWO (1 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- virbr0 * 192.168.122.0/24 0.0.0.0/0 0 0 REJECT all -- virbr0 * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable Chain LIBVIRT_FWX (1 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- virbr0 virbr0 0.0.0.0/0 0.0.0.0/0 Chain LIBVIRT_INP (1 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT udp -- virbr0 * 0.0.0.0/0 0.0.0.0/0 udp dpt:53 0 0 ACCEPT tcp -- virbr0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 0 0 ACCEPT udp -- virbr0 * 0.0.0.0/0 0.0.0.0/0 udp dpt:67 0 0 ACCEPT tcp -- virbr0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:67 Chain LIBVIRT_OUT (1 references) pkts bytes target prot opt in out source destination 0 0 ACCEPT udp -- * virbr0 0.0.0.0/0 0.0.0.0/0 udp dpt:68 Quote Link to comment
Kingedgar Posted June 1, 2019 Author Share Posted June 1, 2019 Solved by cleaning up /boot/config/docker.cfg Quote Link to comment
superloopy1 Posted January 7, 2020 Share Posted January 7, 2020 How exactly could help me with my docker network issues ... Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.