New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
docker fails to allocate and map port #10207
Comments
can you give us the output of docker version and docker info |
here it is: docker info docker version |
Ok so as of #7003 being merged, On Mon, Jan 19, 2015 at 5:47 PM, LinforPros notifications@github.com
|
Here is what I get after: Failed to allocate and map port 80: iptables failed: iptables --wait -t nat - What do you make of it? LinforPros |
Hmmm this is super odd, have you tried adding a rule to the iptables chain manually through the command-line? Does that work? Maybe there is some sort of problem with permissions? |
Also what is the output of |
Sorry for all the replies, this is just quite odd. |
Hello, The error message
System information
|
My problem was solved by this hint: #10218 Restarting the docker daemon has restored the chain. |
dup #9047 |
It appears that interacting with Fedora 21's firewalld (such as via the firewall-config GUI) triggers this bug. This is likely to happen if you need to open up a port for a container. |
I haven't used
I'm also on Fedora 21, the Server edition though. I think There's another problem that @jfrazelle I think that's a different bug than this one? EDIT: and yeah, I have that same error in
EDIT2: temporary workaround is to restart Docker ( |
I've run into this issue on CentOS 7 (kernel 3.10.0-123) using Docker 1.6.0 with iptables and firewalld is not running. The workaround is to restart docker, however, in a running system that means containers die which is not acceptable. |
Thanks for this info!
|
@soichih thanks ,i do not know how ,but it works |
The below message gets generated after:
docker run -it --name apache -d fedora/apache
Failed to allocate and map port 80: iptables failed: iptables --wait -t nat -A DOCKER -p tcp -d 0/0 --dport 80 ! -i docker0 -j DNAT --to-destination 172.17.0.8:80: iptables: No chain/target/match by that name.
The system
firewall-cmd --list-all
FedoraServer (default, active)
interfaces: docker0 enp5s0 virbr0
sources:
services: cockpit dhcpv6-client http ssh
ports:
masquerade: no
forward-ports:
icmp-blocks:
rich rules:
The text was updated successfully, but these errors were encountered: