rarias/jungle
rarias/jungle
2
0
Fork 2
Code Issues 52 Pull Requests 8 Actions Packages Projects Releases Wiki Activity

Docker unable to reach the local 23080 port #94

New Issue
Closed
opened 2025-04-15 12:09:37 +02:00 by rarias · 1 comment
rarias commented 2025-04-15 12:09:37 +02:00
Owner
Copy Link

It seems that we cannot clone repositories because the iptables rules prevent docker from reaching the local 23080 port.

Build log: https://gitlab.bsc.es/hwdesign/fpga/integration-lab/nixos/-/jobs/1257659

Journal:

Apr 15 10:59:08 hut kernel: refused connection: IN=docker0 OUT= PHYSIN=veth274df6a MAC=02:42:8e:35:a7:90:02:42:ac:11:00:02:08:00 SRC=172.17.0.2 DST=10.0.40.7 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=6217 DF PROTO=TCP SPT=59684 DPT=23080 WINDOW=64240 RES=0x00 SYN URGP=0
Apr 15 10:59:16 hut kernel: refused connection: IN=docker0 OUT= PHYSIN=veth274df6a MAC=02:42:8e:35:a7:90:02:42:ac:11:00:02:08:00 SRC=172.17.0.2 DST=10.0.40.7 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=6218 DF PROTO=TCP SPT=59684 DPT=23080 WINDOW=64240 RES=0x00 SYN URGP=0
Apr 15 10:59:32 hut kernel: refused connection: IN=docker0 OUT= PHYSIN=veth274df6a MAC=02:42:8e:35:a7:90:02:42:ac:11:00:02:08:00 SRC=172.17.0.2 DST=10.0.40.7 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=6219 DF PROTO=TCP SPT=59684 DPT=23080 WINDOW=64240 RES=0x00 SYN URGP=0
Apr 15 11:00:05 hut kernel: refused connection: IN=docker0 OUT= PHYSIN=veth274df6a MAC=02:42:8e:35:a7:90:02:42:ac:11:00:02:08:00 SRC=172.17.0.2 DST=10.0.40.7 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=6220 DF PROTO=TCP SPT=59684 DPT=23080 WINDOW=64240 RES=0x00 SYN URGP=0
It seems that we cannot clone repositories because the iptables rules prevent docker from reaching the local 23080 port. Build log: https://gitlab.bsc.es/hwdesign/fpga/integration-lab/nixos/-/jobs/1257659 Journal: ``` Apr 15 10:59:08 hut kernel: refused connection: IN=docker0 OUT= PHYSIN=veth274df6a MAC=02:42:8e:35:a7:90:02:42:ac:11:00:02:08:00 SRC=172.17.0.2 DST=10.0.40.7 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=6217 DF PROTO=TCP SPT=59684 DPT=23080 WINDOW=64240 RES=0x00 SYN URGP=0 Apr 15 10:59:16 hut kernel: refused connection: IN=docker0 OUT= PHYSIN=veth274df6a MAC=02:42:8e:35:a7:90:02:42:ac:11:00:02:08:00 SRC=172.17.0.2 DST=10.0.40.7 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=6218 DF PROTO=TCP SPT=59684 DPT=23080 WINDOW=64240 RES=0x00 SYN URGP=0 Apr 15 10:59:32 hut kernel: refused connection: IN=docker0 OUT= PHYSIN=veth274df6a MAC=02:42:8e:35:a7:90:02:42:ac:11:00:02:08:00 SRC=172.17.0.2 DST=10.0.40.7 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=6219 DF PROTO=TCP SPT=59684 DPT=23080 WINDOW=64240 RES=0x00 SYN URGP=0 Apr 15 11:00:05 hut kernel: refused connection: IN=docker0 OUT= PHYSIN=veth274df6a MAC=02:42:8e:35:a7:90:02:42:ac:11:00:02:08:00 SRC=172.17.0.2 DST=10.0.40.7 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=6220 DF PROTO=TCP SPT=59684 DPT=23080 WINDOW=64240 RES=0x00 SYN URGP=0 ```
rarias added the
net
 label 2025-04-15 12:09:37 +02:00
rarias self-assigned this 2025-04-15 12:09:42 +02:00
rarias commented 2025-04-15 12:19:01 +02:00
Author
Owner
Copy Link

Reproducer:

hut% sudo docker run -it --rm alpine /bin/ash
/ # nc -v 10.0.40.7 23080
(nothing comes out)
Reproducer: ``` hut% sudo docker run -it --rm alpine /bin/ash / # nc -v 10.0.40.7 23080 (nothing comes out) ```
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
ceph
ci
config
hw
io
kernel
mpi
net
nix
ops
repair
No Label
net
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
abonerib arocanon varcila rarias
No Assignees rarias
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: rarias/jungle#94
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?