Expose to localhost the default port number (3000) of the 3scale_backend listener on the Makefile 'dev' rule#8
Conversation
unleashed
left a comment
unleashed
left a comment
There was a problem hiding this comment.
let's try it without --expose to see whether it also picks up the server in any other port... also make the commit title shorter (ie. around 80 chars max)
|
Isolation level is being lowered a little bit. Will not be possible to run two dev containers concurrently. Not a big deal, though. |
|
Should not make any difference |
|
By reading at the documentation, as eguzki said it seems So it is purely informational to docker/the clients that use the container or the docker API to obtain container information. Regarding the need of having to expose ports or not: I think it is better to not limit ourselves to only be able to run one container at a time so it may be not a good idea to start the container in local host mode. If in a future there is the need to connect via localhost we can always configure the publishing of the port to localhost, which would be a valid syntax: What do you think? |
|
I think it is completely ok and expected to have a single What we need to know is whether we can limit the services exposed to just the listener (ie. not anything else, like the Redis server or other services that are currently run simultaneously) in order to avoid conflict with other services a developer might have in their machine (ie. a local Redis install). This might need to make use of Can you check this is the case? |
|
Hi, Host networking in docker (https://docs.docker.com/network/host/) removes the network isolation from the Docker host so every port that is listening on the container will be made available in the docker host. For example, I specified the following parameters: --network=host -p 5000:3000 to remap the port but no port remapping has been done because it uses local networking: All opened ports in the docker container are made available in the docker host in that case. If what we want to do is to make available the backend_service port into the local machine through the localhost interface (127.0.0.1) what can be done is to perform a port remapping (with -p) using the bridged networking type (the default one when no --network is specified). In that way we can: For example, if we specify -p 5000:3000, this would remap the port 3000 of the container to the port 5000 of the host machine (we can perform -p 3000:3000 if we want to use the same port than the one used in the container): I think the best idea would be to use the bridged networking (default one) with -p 3000:3000 What do you think? |
|
I too think that's the best option.
…On Wed, Apr 4, 2018, 13:06 Miguel Soriano ***@***.***> wrote:
Hi,
Host networking in docker (https://docs.docker.com/network/host/) removes
the network isolation from the Docker host so every port that is listening
on the container will be made available in the docker host.
No concept of mapping applies because there is no network isolation.
If you try to specify a port remapping with local networking specified in
docker you can see there is no ports configured even if you specify -p.
For example, I specified the following parameters: --network=host -p
5000:3000 to remap the port but no port remapping has been done because it
uses local networking:
***@***.*** apisonator]$ ps aux | grep -i apisonator-dev
msoriano 22905 0.0 0.0 120112 3252 pts/3 S+ 12:56 0:00 /bin/sh /home/msoriano/repositories/apisonator/script/make_report_time.sh -c if docker ps -a --filter name=apisonator-dev | grep -q apisonator-dev 2> /dev/null >&2; then \ ?docker start -ai apisonator-dev ; \ else \ docker run -ti -h apisonator-dev --network=host -p 5000:3000 -v \ ?/home/msoriano/repositories/apisonator:$(docker run --rm apisonator-dev /bin/bash -c 'cd && pwd')/apisonator:z \ ?-u $(docker run --rm apisonator-dev /bin/bash -c 'id -u'):$(docker run --rm apisonator-dev /bin/bash -c 'id -g') \ ?--name apisonator-dev apisonator-dev /bin/bash ; \ fi
msoriano 22907 0.0 0.0 4276 736 pts/3 S+ 12:56 0:00 time -o bench.txt -a -f [%E] : if docker ps -a --filter name=apisonator-dev | grep -q apisonator-dev 2> /dev/null >&2; then \ ?docker start -ai apisonator-dev ; \ else \ docker run -ti -h apisonator-dev --network=host -p 5000:3000 -v \ ?/home/msoriano/repositories/apisonator:$(docker run --rm apisonator-dev /bin/bash -c 'cd && pwd')/apisonator:z \ ?-u $(docker run --rm apisonator-dev /bin/bash -c 'id -u'):$(docker run --rm apisonator-dev /bin/bash -c 'id -g') \ ?--name apisonator-dev apisonator-dev /bin/bash ; \ fi -- sh -c if docker ps -a --filter name=apisonator-dev | grep -q apisonator-dev 2> /dev/null >&2; then \ ?docker start -ai apisonator-dev ; \ else \ docker run -ti -h apisonator-dev --network=host -p 5000:3000 -v \ ?/home/msoriano/repositories/apisonator:$(docker run --rm apisonator-dev /bin/bash -c 'cd && pwd')/apisonator:z \ ?-u $(docker run --rm apisonator-dev /bin/bash -c 'id -u'):$(docker run --rm apisonator-dev /bin/bash -c 'id -g') \ ?--name apisonator-dev apisonator-dev /bin/bash ; \ fi
msoriano 22908 0.0 0.0 120108 3092 pts/3 S+ 12:56 0:00 sh -c if docker ps -a --filter name=apisonator-dev | grep -q apisonator-dev 2> /dev/null >&2; then \ ?docker start -ai apisonator-dev ; \ else \ docker run -ti -h apisonator-dev --network=host -p 5000:3000 -v \ ?/home/msoriano/repositories/apisonator:$(docker run --rm apisonator-dev /bin/bash -c 'cd && pwd')/apisonator:z \ ?-u $(docker run --rm apisonator-dev /bin/bash -c 'id -u'):$(docker run --rm apisonator-dev /bin/bash -c 'id -g') \ ?--name apisonator-dev apisonator-dev /bin/bash ; \ fi
msoriano 23187 0.0 0.0 623716 16104 pts/3 Sl+ 12:56 0:00 /usr/bin/docker-current run -ti -h apisonator-dev --network=host -p 5000:3000 -v /home/msoriano/repositories/apisonator:/home/ruby/apisonator:z -u 1000:1000 --name apisonator-dev apisonator-dev /bin/bash
msoriano 23823 0.0 0.0 119660 1044 pts/2 S+ 12:59 0:00 grep --color=auto -i apisonator-dev
$ docker port apisonator-dev
$
All opened ports in the docker container are made available in the docker
host in that case.
If what we want to do is to make available the backend_service port into
the local machine through the localhost interface (127.0.0.1) what can be
done is to perform a port remapping (with -p) using the bridged networking
type (the default one when no --network is specified). In that way we can:
· Perform requests to the backend_service via localhost with an arbitrary
port number that we have defined (which may be the same or different than
the port in the container)
· Perform requests to the backend_service via the IP address of the
container that is configured when the bridged mode is applied.
For example, if we specify -p 5000:3000, this would remap the port 3000 of
the container to the port 5000 of the host machine (we can perform -p
3000:3000 if we want to use the same port than the one used in the
container):
***@***.*** apisonator]$ curl 127.0.0.1:5000/status
***@***.*** apisonator]$
***@***.*** apisonator]$ curl 172.17.0.2:3000/status
***@***.*** apisonator]$
I think the best idea would be to use the bridged networking (default one)
with -p 3000:3000
What do you think?
—
You are receiving this because your review was requested.
Reply to this email directly, view it on GitHub
<#8 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AAMUQrTqH7uUqXFsc5Olghhw1HklLU9qks5tlKkpgaJpZM4TFZwB>
.
|
|
👍 for bridge, host networking is a bit broken on Docker for macOS. |
miguelsorianod
force-pushed
the
feature/expose-3scale-backendlistener-port
branch
from
4b1d8f5 to
e4a3339
Compare
|
I have configured the publishing of port 3000 and modified the commit. You can proceed to review it again. Thank you. |
| docker start -ai apisonator-dev ; \ | ||
| else \ | ||
| docker run -ti -h apisonator-dev -v \ | ||
| docker run -ti -h apisonator-dev --expose=3000 -p 3000:3000 -v \ |
There was a problem hiding this comment.
BTW it is pretty common to be able to configure local port by PORT env variable.
That would be helpful for people running more than one ruby app locally.
There was a problem hiding this comment.
I understand you want to be able to modify the port in use in the local host machine so it does not cause conflict with other local ports of other service that may use the same port.
I performed a new commit that would allow this with an environment variable.
There was a problem hiding this comment.
Yes. And common name for this variable is PORT.
There was a problem hiding this comment.
Hi,
I agree that usually PORT name is a good name but I chose the name BACKEND_SERVICE_PORT in order to be able to differentiate it from other potentially configurable ports in this Makefile for other services/actions.
For example, if in the future we want to be able to modify the container port we would need another environment variable, which would have to have another name. The same think would happen if we want to be able to control other ports on other services.
There was a problem hiding this comment.
If this command starts one service that starts listening on one port then I really don't see the need for namespaced name. If there would be need in the future to customize other ports, then those could be named differently, because PORT is the port the service starts listening on.
I don't really like making compromises now for future that might never arrive.
Good to merge anyway 👍 at least it is configurable (for someone who is going to check the makefile).
There was a problem hiding this comment.
Hi mikz,
Seems reasonable what you are saying. I updated the variable name and added documentation on the Makefile so people can be aware of this variable.
miguelsorianod
force-pushed
the
feature/expose-3scale-backendlistener-port
branch
from
e2541c6 to
cff2ae5
Compare
In order to be able to perform local development testing more easily we expose and publish the default port (3000) of the 3scale_backend listener when executing the Makefile 'dev' rule. The variable PORT has been added to allow the client of the Makefile to remap the local backend_service port to a desired one. If the variable is not defined then the value is the default port of the backend_service service (3000). Also, the README.md documentation has been updated accordingly.
miguelsorianod
force-pushed
the
feature/expose-3scale-backendlistener-port
branch
from
cff2ae5 to
aa3d1af
Compare
5 participants
In order to be able to perform local development testing more easily we expose the default port (3000) of the 3scale_backend listener when executing the Makefile 'dev' rule