You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Description
Deploying a swarm service with a port mapping (such as 22), that conflicts with a daemon already running on the underlying hosts, will succeed. Due to ingress networking, port mapping takes precedence over all hosts systems in the swarm cluster, and in the case of port 22 it breaks ssh access to each host.
Steps to reproduce the issue:
Deploy a service with a port used by the underlying hosts e.g. port 22
See service deploys successfully
Try to access host over ssh on port 22 and it fails
Describe the results you received:
If I expose a ssh service in swarm on port 22 it succeeds. I can connect to that service, but I lose ssh access to the underlying hosts
Describe the results you expected:
I believe that services should have a check built in to stop this happening like container deployments
Output of docker version:
Client: Docker Engine - Community
Version: 19.03.3
API version: 1.40
Go version: go1.12.10
Git commit: a872fc2f86
Built: Tue Oct 8 00:59:59 2019
OS/Arch: linux/amd64
Experimental: false
Server: Docker Engine - Community
Engine:
Version: 19.03.3
API version: 1.40 (minimum version 1.12)
Go version: go1.12.10
Git commit: a872fc2f86
Built: Tue Oct 8 00:58:31 2019
OS/Arch: linux/amd64
Experimental: false
containerd:
Version: 1.2.6
GitCommit: 894b81a4b802e4eb2a91d1ce216b8817763c29fb
runc:
Version: 1.0.0-rc8
GitCommit: 425e105d5a03fabd737a126ad93d62a9eeede87f
docker-init:
Version: 0.18.0
GitCommit: fec3683
Description
Deploying a swarm service with a port mapping (such as 22), that conflicts with a daemon already running on the underlying hosts, will succeed. Due to ingress networking, port mapping takes precedence over all hosts systems in the swarm cluster, and in the case of port 22 it breaks ssh access to each host.
Steps to reproduce the issue:
Describe the results you received:
If I expose a ssh service in swarm on port 22 it succeeds. I can connect to that service, but I lose ssh access to the underlying hosts
Describe the results you expected:
I believe that services should have a check built in to stop this happening like container deployments
Output of
docker version
:Output of
docker info
:The text was updated successfully, but these errors were encountered: