In this mode, containers are connected to this "private network", and each one gets its own IP address and a full network namespace where all TCP ports are available.
As an example, the "docker0" bridge in the picture above has private addressing (172.16.0.0/24), just as your home network is separate from the broadband network it's connected to.
In order to do something similar to that inside the containerized host, a separate virtual bridge can be created with a completely separate internal network namespace.
0 kommentar(er)
