Understanding Networking

manoki875 · February 22, 2020, 6:10pm

Hi,

I am searching for a compose configuration, but I didn’t found, what I was looking for:

I want 2 containers, lets say an app and its database. The app container must have network access to the host network (i.e. host as network_mode) and access to the database container (e.g. via bridge as network_mode). Currently, my database container exposes its port to the host, where the app container is able to connect, but I consider this as a workaround/dirty hack.

What would be an alternative configuration?

Thanks, ManOki

tekki · February 23, 2020, 8:10am

If you start them from the same compose file they can connect to each other using their service names, without additional configuration.
Why does the app need access to the host network? Containers should be isolated as much as possible.

manoki875 · February 23, 2020, 9:46am

I’m using a container for fhem, a house automation server, which needs to connect to other devices in my network. I don’t want to add rules for every connection/port/device. In this case I use docker to simplify the update procedure rather than to isolate as much as possible.

Here is my docker-compose.yml. Within the fhem container I cannot reach the database container by its hostname/servicename, e.g. ping database.

version: '3.3'
services:
  fhem:
    image: fhem/fhem
    restart: unless-stopped
    network_mode: host
    volumes:
        - [...]
    devices:
        - [...]
    environment:
        - [...]
    depends_on:
        - database
  database:
    image: mariadb
    restart: unless-stopped
    ports:
        - 3307:3306
    volumes:
        - [...]
    env_file: ./database.env
volumes:
  database_files:

tekki · February 23, 2020, 10:33am

If you just want to read information for example from a device tracker you should be able to access it at its IP address. Of course if you need multicast and such things then you have to integrate it into the host network.

Did you try to access it with the MariaDB client (on the default port)?

manoki875 · February 23, 2020, 6:19pm

Do you mean, I should be able to access the device tracker from a container with bridge network_mode? How can I configure this?

I did using mysql -h database inside fhem container, result is ERROR 2005 (HY000): Unknown MySQL server host 'database' (-2).

tekki · February 24, 2020, 10:12am

Yes, it should work. For the start, don’t configure anything and let docker-compose manage the networks.
You can always send requests from a container to devices in the host network. For example I have a Homematic CCU at 192.168.1.42 and I can access it with:

docker container run --rm debian ping 192.168.1.42

Most of the time the attempt to modify the settings manually is the reason why the networking is broken.

manoki875 · February 24, 2020, 4:06pm

Thanks for the hint, I wasn’t aware of that! I tested this and it works as intented.

Unfortunately, I realized that I probably need multicast. Is there any other option than host as network_mode to send/listen multicast packets from a docker container to my host network?

tekki · February 26, 2020, 7:21am

Create an internal network and connect fhem and database to it, in addition to that connect fhem to the host network. Take a look at Networking in Compose and Network configuration reference. (At the moment I’ve no time to write more and I know these documentations are often a bit complicated.)

Topic		Replies	Views
Docker compose connect containers from different networks Compose docker , docker-compose	2	173	July 29, 2024
Docker Compose - Access host network interface Docker Hub docker	8	6370	February 15, 2019
Accessing host network (and devices on network) from within docker container started with compose v3 Docker Desktop macos	2	5545	April 6, 2018
Confused about networks and database Compose docker	1	1053	November 3, 2017
Connecting by name from network_mode host and not General docker-compose	1	473	August 2, 2023

Understanding Networking

Related topics