mirror of
https://github.com/cytopia/devilbox.git
synced 2025-01-18 18:56:25 +00:00
172 lines
5.7 KiB
ReStructuredText
172 lines
5.7 KiB
ReStructuredText
.. include:: /_includes/all.rst
|
|
|
|
.. _connect_to_host_os:
|
|
|
|
******************
|
|
Connect to host OS
|
|
******************
|
|
|
|
This section explains how to connect from inside a Devilbox container to the host operating system.
|
|
|
|
|
|
**Table of Contents**
|
|
|
|
.. contents:: :local:
|
|
|
|
|
|
Prerequisites
|
|
=============
|
|
|
|
When you want to connect from inside a Docker container to a port on your host operating system,
|
|
ensure the host service is listening on all interfaces for simplicity.
|
|
|
|
The following sections will give you the IP address and/or the CNAME where the host os can be
|
|
reached from within a container.
|
|
|
|
|
|
.. _connect_to_host_os_docker_on_linux:
|
|
|
|
Docker on Linux
|
|
===============
|
|
|
|
If you run Docker on Linux the host IP is always ``172.16.238.1``, which is the default gateway
|
|
IP address within the Devilbox bridge network (see ``docker-compose.yml``).
|
|
|
|
.. important:: Ensure services on the host listen on that IP address or on all interfaces.
|
|
|
|
By default Docker on Linux does not have CNAME's of the host computer as for example with MacOS
|
|
or Windows, therefore two custom CNAME's have been added by the Devilbox in order to emulate the
|
|
same behaviour:
|
|
|
|
* CNAME: ``docker.for.lin.host.internal``
|
|
* CNAME: ``docker.for.lin.localhost``
|
|
|
|
|
|
.. _connect_to_host_os_docker_for_mac:
|
|
|
|
Docker for Mac
|
|
==============
|
|
|
|
If you run Docker for Mac, an IP address is not necessary as it already provides a CNAME which will
|
|
always point to the IP address of your host operating system. Depending on the Docker version this
|
|
CNAME will differ:
|
|
|
|
Docker 18.03.0-ce+ and Docker compose 1.20.1+
|
|
---------------------------------------------
|
|
|
|
CNAME: ``host.docker.internal``
|
|
|
|
Docker 17.12.0-ce+ and Docker compose 1.18.0+
|
|
---------------------------------------------
|
|
|
|
CNAME: ``docker.for.mac.host.internal``
|
|
|
|
Docker 17.06.0-ce+ and Docker compose 1.14.0+
|
|
---------------------------------------------
|
|
|
|
CNAME: ``docker.for.mac.localhost``
|
|
|
|
|
|
.. _connect_to_host_os_docker_for_win:
|
|
|
|
Docker for Windows
|
|
==================
|
|
|
|
If you run Docker for Windows, an IP address is not necessary as it already provides a CNAME which will
|
|
always point to the IP address of your host operating system. Depending on the Docker version this
|
|
CNAME will differ:
|
|
|
|
.. important:: Ensure your firewall is not blocking Docker to host connections.
|
|
|
|
Docker 18.03.0-ce+ and Docker compose 1.20.1+
|
|
---------------------------------------------
|
|
|
|
* CNAME: ``docker.for.win.host.internal``
|
|
* CNAME: ``host.docker.internal``
|
|
|
|
|
|
Docker 17.06.0-ce+ and Docker compose 1.14.0+
|
|
---------------------------------------------
|
|
|
|
CNAME: ``docker.for.win.host.localhost``
|
|
|
|
|
|
Docker Toolbox
|
|
==============
|
|
|
|
.. note:: This section applies for both, Docker Toolbox on MacOS and Docker Toolbox on Windows.
|
|
|
|
Docker Toolbox behaves the same way as Docker on Linux, with one major difference.
|
|
The Devilbox IP address or the custom provided CNAMEs actually refer to the Docker Toolbox machine.
|
|
|
|
In order to connect from inside the Docker container (which is inside the Docker Toolbox machine)
|
|
to your host os, you need to create:
|
|
|
|
1. either a **local** port-forward on the **Docker Toolbox** machine (``ssh -L``)
|
|
2. or a **remote** port-forward on your **host os** (``ssh -R``)
|
|
|
|
.. seealso:: |ext_lnk_ssh_tunnelling_for_fun_and_profit|
|
|
|
|
|
|
For both examples we assume the following:
|
|
|
|
* MySQL database exists on your host os and listens on ``127.0.0.1`` on port ``3306``
|
|
* Docker Toolbox IP address is ``192.168.99.100``
|
|
* Host IP address where SSH is listening on ``172.16.0.1``
|
|
* Host SSH username is ``user``
|
|
* Devilbox Docker container wants to access MySQL on host os
|
|
|
|
|
|
Local port forward on Docker Toolbox
|
|
------------------------------------
|
|
|
|
.. important::
|
|
For that to work, your host operating system requires an SSH server to be up and running.
|
|
|
|
+----------------+----------------+--------------+--------------------+--------------+
|
|
| Initiator | From host | From port | To host | To port |
|
|
+================+================+==============+====================+==============+
|
|
| Docker Toolbox | ``127.0.0.1`` | ``3306`` | ``192.168.99.100`` | ``3306`` |
|
|
+----------------+----------------+--------------+--------------------+--------------+
|
|
|
|
.. code-block:: bash
|
|
|
|
# From Docker Toolbox forward port 3306 (on host 172.16.0.1) to myself (192.168.99.100)
|
|
toolbox> ssh -L 3306:127.0.0.1:3306 user@172.16.0.1
|
|
|
|
.. seealso::
|
|
* :ref:`howto_find_docker_toolbox_ip_address`
|
|
* :ref:`howto_ssh_into_docker_toolbox`
|
|
* :ref:`howto_ssh_port_forward_on_docker_toolbox_from_host`
|
|
|
|
Remote port-forward on host os
|
|
------------------------------
|
|
|
|
.. important::
|
|
For that to work, your host operating system requires an SSH client (``ssh`` binary).
|
|
|
|
+----------------+----------------+--------------+--------------------+--------------+
|
|
| Initiator | From host | From port | To host | To port |
|
|
+================+================+==============+====================+==============+
|
|
| Host os | ``127.0.0.1`` | ``3306`` | ``192.168.99.100`` | ``3306`` |
|
|
+----------------+----------------+--------------+--------------------+--------------+
|
|
|
|
.. code-block:: bash
|
|
|
|
# From host os forward port 3306 (from loopback 127.0.0.1) to Docker Toolbox (192.168.99.100)
|
|
host> ssh -R 3306:127.0.0.1:3306 docker@192.168.99.100
|
|
|
|
.. seealso::
|
|
* :ref:`howto_find_docker_toolbox_ip_address`
|
|
* :ref:`howto_ssh_into_docker_toolbox`
|
|
* :ref:`howto_ssh_port_forward_on_host_to_docker_toolbox`
|
|
|
|
Post steps
|
|
----------
|
|
|
|
With either of the above you have achieved the exact behaviour as
|
|
:ref:`connect_to_host_os_docker_on_linux` for one single service/port (MySQL port 3306).
|
|
|
|
You must now follow the steps for :ref:`connect_to_host_os_docker_on_linux` to actually connect
|
|
to that service from within the Devilbox Docker container.
|