There are 3 distinct vms where RabbitMQ service is deployed in global mode.
My goal is to block traffic to one of the RabbitMQ service containers.
Tried using iptables to Reproduce RabbitMQ network partition scenario
by adding iptables chain
iptables -A DOCKER-INGRESS -d 10.255.0.33 -p tcp --dport amqp -m state --state ESTABLISHED,RELATED -j DROP
on 2 docker nodes where RabbitMQ service task containers run.
10.255.0.33 is ip of the container from swarm overlay network taken from
docker service inspect output.
Though, traffic still passes through and network partition is not reproduced.
How to block traffic to service container correctly?