allow docker host access to enclave ports under linux ? #2495
Comments
|
Hey @garyng2000 ! How are you attempting to access the ports? eg. |
|
curl -s http://localhost: as shown in 'kurtosis enclave inspect ' ========================================== User Services ========================================== |
|
so in this case curl -s http://localhost:32864. I get reset by peer error wondering if it has anything to do with this host.docker.internal:host-gateway which is needed for my other docker-compose setup below is the exact input/output |
|
what are the network params you're running with? or are you using defaults? Also how are you seeing the my hypothesis is that this setting |
|
I am not using additional param, just straight setup from this(basically default) https://geth.ethereum.org/docs/fundamentals/kurtosis it seems that the 'dora' service can communicate with the geth container so it must be some docker level setup issue but that being wrapped inside kurtosis, I don't know where to start to trace |
|
Any chance you can join our discord? I'm happy to continue assisting you there! https://discord.com/invite/HUapYX9RvV |
|
thanks for the help, I would try to use that channel later. I may have find the reason as inspecting the geth container itself shows me this about network "Networks": { which may be conflicting with my hosting machine which is also using 172.16.0.x, so the question may then be anyway to configure the network setup in kurtosis for the 'private docker network' ? though just a WAG at the moment |
|
That makes sense. Background - Kurtosis creates a Docker bridge subnetwork for each enclave so that services within each enclave can only communicate with other services in the enclave. Any custom config that might alter how Docker networking works might affect this. |
|
something doesn't make sense, in the created brdige(which seems to be what kurtosis is using) br-b4e4c03a202a: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1440 so this is using a bridging network thus the host mapping probably is not working as my limited understanding of docker is it needs to be in 'host' network mode for the port mapping to work |
|
ok, it seems that it is the package itself https://github.com/ethpandaops/ethereum-package/tree/main is having issue, the default quickstart package runs find as the proper network configurations are used for the various containers need to bug the package maintainer :-) |
What's your CLI version?
0.90.1
Description & steps to reproduce
I am using a kurtosis package at github.com/ethpandaops/ethereum-package
which maps host ports to docker container ones(created via kurtosis) but I cannot access it from the host. how should the kurtosis package to be configured in order to allow this ?
Desired behavior
should be able to access mapped port from host
What is the severity of this bug?
Critical; I am blocked and Kurtosis is unusable for me because of this bug.
What area of the product does this pertain to?
Other: anything not covered by the above
The text was updated successfully, but these errors were encountered: