DSTNAT without binding, is it possible

victorzzt · September 16, 2019, 10:00am

In order for me to be able to flexibly change the exposed port, I tried to create a container with exposed port 80 on local with a fixed ip address.

And have a dstnat rule to point an external request to the local container
DNAT tcp – anywhere WANIP tcp dpt:26080 to:172.11.0.241:80
(172.11.0.241 is the ip of the container)

The expose in Dockerfile seems to be working
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
f3b3c29498c0 expressjs/node:lts “/home/shell.sh” 10 minutes ago Up 10 minutes 80/tcp express

But I seems not to be able to access it from outside even when I have the same masquerade rule as the docker0 network.

What other rules do I need to add for the translate to work?
Thanks.

Topic		Replies	Views
Network param for connecting to 127.0.0.1 in container General	5	20976	August 1, 2017
DNS in container for other containers in different subnets General dns	2	5443	February 21, 2020
New to Docker, need some help with port mappings "iptables" Docker Hub docker	0	879	November 13, 2019
Exposed ports with net=container: General	7	2324	September 17, 2022
Can't get to BIND container from outside of host computer General dns	0	929	August 19, 2018

DSTNAT without binding, is it possible

Related topics