cjhammel Posted June 20, 2019 Share Posted June 20, 2019 I have created a number of docker containers and have assigned them static IP's. I can ping them from any other device on the network and they work as expected. I have a mail server running in one of the dockers and would like the unraid server to be able to send email messages to that server. When I ping the docker from the unraid server I get From tower.local (192.168.0.31) icmp_seq=1 Destination Host Unreachable then when I check the arp table i get mail.local (incomplete) br0 Is there some setting that will allow the docker containers to respond to the unraid server? Thanks Chris Quote Link to comment
JonathanM Posted June 20, 2019 Share Posted June 20, 2019 Read this. https://forums.unraid.net/topic/54882-630-how-to-setup-dockers-without-sharing-unraid-ip-address/ Specifically this. Quote The container will not be allowed to talk to unRAID host due to the underlying security implementation with the macvlan driver used by Docker. This is by design Quote Link to comment
cjhammel Posted June 20, 2019 Author Share Posted June 20, 2019 Ok it is by design. Quote Link to comment
snoopy86 Posted February 16 Share Posted February 16 Why is this a security problem? When i set one container to have static ip i still want that other container can reach this container and other way around. Quote Link to comment
Solution Mainfrezzer Posted February 16 Solution Share Posted February 16 (edited) 43 minutes ago, snoopy86 said: Why is this a security problem? When i set one container to have static ip i still want that other container can reach this container and other way around. Docker container on a (macvlan/ipvlan)-bridge can reach each other. The security aspect is network isolation between any of the virtualized enviroments to the host system. Besides that, theres a checkbox to remove it. Edited February 16 by Mainfrezzer 1 Quote Link to comment
snoopy86 Posted February 16 Share Posted February 16 2 hours ago, Mainfrezzer said: Docker container on a (macvlan/ipvlan)-bridge can reach each other. The security aspect is network isolation between any of the virtualized enviroments to the host system. Besides that, theres a checkbox to remove it. Tnx. I have missed "Host access to custom networks" setting. Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.