Re: [SlimDevices: Unix] 'Official' docker container for LMS?

Mon, 30 Mar 2020 05:25:01 -0700 


This is the output:


Code:
--------------------
    root@xcp-docker2:~# iptables -t nat -L
  Chain PREROUTING (policy ACCEPT)
  target     prot opt source               destination
  DOCKER     all  --  anywhere             anywhere             ADDRTYPE match 
dst-type LOCAL
  
  Chain INPUT (policy ACCEPT)
  target     prot opt source               destination
  
  Chain POSTROUTING (policy ACCEPT)
  target     prot opt source               destination
  MASQUERADE  all  --  192.168.160.0/20     anywhere
  MASQUERADE  all  --  172.17.0.0/16        anywhere
  MASQUERADE  tcp  --  192.168.160.2        192.168.160.2        tcp dpt:9090
  MASQUERADE  tcp  --  192.168.160.2        192.168.160.2        tcp dpt:9010
  MASQUERADE  tcp  --  192.168.160.2        192.168.160.2        tcp dpt:9005
  MASQUERADE  tcp  --  192.168.160.2        192.168.160.2        tcp dpt:9000
  MASQUERADE  udp  --  192.168.160.2        192.168.160.2        udp dpt:mdns
  MASQUERADE  tcp  --  192.168.160.2        192.168.160.2        tcp dpt:3483
  MASQUERADE  udp  --  192.168.160.2        192.168.160.2        udp dpt:3483
  
  Chain OUTPUT (policy ACCEPT)
  target     prot opt source               destination
  DOCKER     all  --  anywhere            !127.0.0.0/8          ADDRTYPE match 
dst-type LOCAL
  
  Chain DOCKER (2 references)
  target     prot opt source               destination
  RETURN     all  --  anywhere             anywhere
  RETURN     all  --  anywhere             anywhere
  DNAT       tcp  --  anywhere             anywhere             tcp dpt:9090 
to:192.168.160.2:9090
  DNAT       tcp  --  anywhere             anywhere             tcp dpt:9010 
to:192.168.160.2:9010
  DNAT       tcp  --  anywhere             anywhere             tcp dpt:9005 
to:192.168.160.2:9005
  DNAT       tcp  --  anywhere             anywhere             tcp dpt:9000 
to:192.168.160.2:9000
  DNAT       udp  --  anywhere             anywhere             udp dpt:mdns 
to:192.168.160.2:5353
  DNAT       tcp  --  anywhere             anywhere             tcp dpt:3483 
to:192.168.160.2:3483
  DNAT       udp  --  anywhere             anywhere             udp dpt:3483 
to:192.168.160.2:3483
  
--------------------


Appears to be doing a combination of DNAT and MASQUERADE.

The container's IP:


Code:
--------------------
    eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
  inet 192.168.160.2  netmask 255.255.240.0  broadcast 192.168.175.255
  ether 02:42:c0:a8:a0:02  txqueuelen 0  (Ethernet)
  RX packets 357  bytes 40454 (39.5 KiB)
  RX errors 0  dropped 0  overruns 0  frame 0
  TX packets 263  bytes 155330 (151.6 KiB)
  TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
  
--------------------


Based on the error, is it refusing a connection from 192.168.128.1 to
192.168.128.2 because it thinks they're not on the same network?

Andy


------------------------------------------------------------------------
adhawkins's Profile: http://forums.slimdevices.com/member.php?userid=650
View this thread: http://forums.slimdevices.com/showthread.php?t=111828

_______________________________________________
unix mailing list
[email protected]
http://lists.slimdevices.com/mailman/listinfo/unix

Reply via email to