Hi,
we're running only 3 containers in privileged mode: cobbler, rsyslog and
mcollective. Running all the containers in privileged mode is not a good
idea for security reasons. Docker manages DNAT forwarding itself, so it
does not create any overhead for us.
Is there any real benefits of using
Moving to host networking would reduce our ability to do zero downtime
upgrades in the future. It means you must kill the old container in
order to start the new one, rather than allowing for the possibility
to remap the network configuration in iptables. It's something we
don't have now, but we
Hi team,
I want to discuss benefits of using host networking [1] for docker
containers, on master node.
This feature was added in docker 0.11 and basicly means - reuse host
networking stack, without
creating separate namespace for each container.
In my opinion it will result in much more stable
