Create custom interface (network bridge) and use that for a container network

peterparker1337 · April 8, 2023, 8:05am

Hey there!

I have been trying to wrap my head around how I could add a rule to iptables that only affects a specific or a group of selected containers.

Let’s say I want to DROP all UDP packets from docker1.
I need this rule to be configured on the host system.

I thought adding a custom bridge (bridge1) to my Ubuntu system and creating a docker network on top of that bridge would be a good idea.

I think I almost got it working.

What are the required steps to give bridge1 the same capabilities like the default bridge0.

I am talking about giving containers internet access again.

This is what I have been trying:

# create bridge
brctl addbr docker1

# assign address to interface
ip addr add 172.20.0.1/20 dev docker1

# Create new docker network
docker network create --driver bridge --subnet 172.20.0.1/20 --opt "com.docker.network.bridge.name"="docker1" mynet

# create container
# docker run —network=mynet ….

# Container has no internet access, no DNS, etc

Topic		Replies	Views
Use custom docker network by default? General	0	912	October 30, 2016
Host and docker bridge - and iptables General docker	0	3812	March 6, 2017
How to bind a bridge to a specific NIC? General	1	1458	January 11, 2019
Set default gateway of container to different one than host General dns , docker , ubuntu	2	2237	April 1, 2024
Question around Docker Networking from a Quiz from a Udemy Course General	2	261	May 25, 2023

Create custom interface (network bridge) and use that for a container network

Related topics