注册登录
提 问
English中文版
保险Docker容器flanner

docker +flanner+ CenterOS:7.1不同宿主机间网络无法通信问题

在两个虚拟机上docker_master:10.1.110.74 ,容器内ip地址为:172.17.49.3docker_minion01:10.1.110.63 容器内ip地址为:172.17.63.3容器间通过flannel进行强制修改容器的路由在docker_master容器中的路由策略、ip信息、防火墙策略:[root@4aad56515f93 /]# route -nKernel IP rou...显示全部

在两个虚拟机上
docker_master:10.1.110.74 ,容器内ip地址为:172.17.49.3
docker_minion01:10.1.110.63 容器内ip地址为:172.17.63.3
容器间通过flannel进行强制修改容器的路由
在docker_master容器中的路由策略、ip信息、防火墙策略:

[root@4aad56515f93 /]# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 172.17.49.1 0.0.0.0 UG 0 0 0 eth0
172.17.49.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
[root@4aad56515f93 /]# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1

link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
   valid_lft forever preferred_lft forever
inet6 ::1/128 scope host 
   valid_lft forever preferred_lft forever

29: eth0@if30: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP

link/ether 02:42:ac:11:31:03 brd ff:ff:ff:ff:ff:ff
inet 172.17.49.3/24 scope global eth0
   valid_lft forever preferred_lft forever
inet6 fe80::42:acff:fe11:3103/64 scope link 
   valid_lft forever preferred_lft forever

防火墙策略:
[root@4aad56515f93 /]# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1

link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
   valid_lft forever preferred_lft forever
inet6 ::1/128 scope host 
   valid_lft forever preferred_lft forever

29: eth0@if30: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP

link/ether 02:42:ac:11:31:03 brd ff:ff:ff:ff:ff:ff
inet 172.17.49.3/24 scope global eth0
   valid_lft forever preferred_lft forever
inet6 fe80::42:acff:fe11:3103/64 scope link 
   valid_lft forever preferred_lft forever

ping docker_minion01中的容器的网关,可以ping通
[root@4aad56515f93 /]# ping 172.17.63.1
PING 172.17.63.1 (172.17.63.1) 56(84) bytes of data.
64 bytes from 172.17.63.1: icmp_seq=1 ttl=61 time=0.599 ms
ping docker_minion01中的容器,无法ping通
[root@4aad56515f93 /]# ping 172.17.63.3
PING 172.17.63.3 (172.17.63.3) 56(84) bytes of data.
docker_master 宿主机的网络信息如下:
docker0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500

    inet 172.17.49.1  netmask 255.255.255.0  broadcast 0.0.0.0
    inet6 fe80::42:f6ff:fe79:7613  prefixlen 64  scopeid 0x20<link>
    ether 02:42:f6:79:76:13  txqueuelen 0  (Ethernet)
    RX packets 19097  bytes 137724726 (131.3 MiB)
    RX errors 0  dropped 0  overruns 0  frame 0
    TX packets 26525  bytes 156608053 (149.3 MiB)
    TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

ens160: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500

    inet 10.1.110.74  netmask 255.255.255.0  broadcast 10.1.110.255
    inet6 fe80::250:56ff:fea5:14d0  prefixlen 64  scopeid 0x20<link>
    ether 00:50:56:a5:14:d0  txqueuelen 1000  (Ethernet)
    RX packets 17191337  bytes 1953653535 (1.8 GiB)
    RX errors 0  dropped 35  overruns 0  frame 0
    TX packets 16223691  bytes 1718727411 (1.6 GiB)
    TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

flannel0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1472

    inet 172.17.49.0  netmask 255.255.0.0  destination 172.17.49.0
    unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  txqueuelen 500  (UNSPEC)
    RX packets 25170  bytes 2114280 (2.0 MiB)
    RX errors 0  dropped 0  overruns 0  frame 0
    TX packets 129  bytes 10836 (10.5 KiB)
    TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
收起
关注3
评论
参与8

查看其它 2 个回答haichuan0227的回答

haichuan0227haichuan0227项目经理新浪云计算

check如下几个点:
1)172.17.63.3是running状态;
2)在172.17.63网络内,172.17.63.3三层可达;

互联网服务 · 2017-06-20
浏览4830
评论1
  • luck_libiao  luck_libiao
    一、172.17.63.3 ip所在容器是启动的,如下:[root@e8b921ccffc9 /]# ip addr 1: lo: &lt;LOOPBACK,UP,LOWER_UP&gt; mtu 65536 qdisc noqueue state UNKNOWN qlen 1 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 9: eth0@if10: &lt;BROADCAST,MULTICAST,UP,LOWER_UP&gt; mtu 1500 qdisc noqueue state UP link/ether 02:42:ac:11:3f:03 brd ff:ff:ff:ff:ff:ff inet 172.17.63.3/24 scope global eth0 valid_lft forever preferred_lft forever inet6 fe80::42:acff:fe11:3f03/64 scope link valid_lft forever preferred_lft forever [root@e8b921ccffc9 /]# 二、在该172.17.63.3所在的宿主机上,启动另外一个容器,获得ip地址为: [root@31a69f43801f /]# ip addr 1: lo: &lt;LOOPBACK,UP,LOWER_UP&gt; mtu 65536 qdisc noqueue state UNKNOWN qlen 1 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 11: eth0@if12: &lt;BROADCAST,MULTICAST,UP,LOWER_UP&gt; mtu 1500 qdisc noqueue state UP link/ether 02:42:ac:11:3f:04 brd ff:ff:ff:ff:ff:ff inet 172.17.63.4/24 scope global eth0 valid_lft forever preferred_lft forever inet6 fe80::42:acff:fe11:3f04/64 scope link valid_lft forever preferred_lft forever 可以ping通172.17.63.3 [root@31a69f43801f /]# ping 172.17.63.3 PING 172.17.63.3 (172.17.63.3) 56(84) bytes of data. 64 bytes from 172.17.63.3: icmp_seq=1 ttl=64 time=0.135 ms 64 bytes from 172.17.63.3: icmp_seq=2 ttl=64 time=0.065 ms 64 bytes from 172.17.63.3: icmp_seq=3 ttl=64 time=0.065 ms
    2017-06-20
    赞同
    评论

回答者

haichuan0227
haichuan0227
项目经理新浪云计算
擅长领域: 云计算一体化运维私有云
关注353
回答151
评论159

haichuan0227 最近回答过的问题

  • M版ironic集成shellinabox,dell服务器,无法连接成功?
  • mitaka版本ironic 控制台console集成Node serial console(pxe_ipmi_socat)?
  • ironic使用cirros镜像部署dell服务器,查询不到网卡?
  • 如何实现ironic通过控制台管理裸机集群?
  • ironic部署服务器,完成之后,最后一次重启,无法获取ip?

    • 回答状态

  • 发布时间:2017-06-20
  • 关注会员:3 人
  • 回答浏览:4830

    • 关于TWT使用指南社区专家合作厂商入驻社区企业招聘投诉建议版权与免责声明联系我们
    © 2024talkwithtrend — talk with trend,talk with technologist京ICP备09031017号-30

    X社区推广