Can the legacy --link --icc=false be implemented with the new docker network API?

baqend · January 19, 2016, 6:00pm

We want to solve the following scenario with docker:

We have one container (server) which has access the local network and the internet. The second container (worker) should connect to the first container and the internet, but any connection to the local network must be restricted. Furthermore, we want to create multiple such peers of containers on the same machine, where always one worker is linked to one server. Is it possible to implement this with the new network api of docker?

Currently we use one user-defined bridge network over which the first container can access the local network and the internet. Furthermore, we employ the legacy “bridge” network in order to link the worker to the server. However, we still have some issues to handle port exposing, container discovery and access restriction. And since the bridge network is marked as a legacy solution we want to switch to the new network api.

Any help is highly appreciated.

Topic		Replies	Views
What to do instead of --link feature? General	2	1123	January 23, 2018
Restrict a container to only be accessible via a bridge network with another container on the same machine General	0	554	January 12, 2021
Docker networking between host and two containers connected by bridge network Docker Hub	0	597	March 29, 2021
Docker: Converting an existing legacy system to Dockerized form while maintaining original network scheme Compose docker , build	0	385	October 14, 2020
A newbe question about docker networks General docker	0	407	August 16, 2021

Can the legacy --link --icc=false be implemented with the new docker network API?

Related topics