control network interface order for containers #40974

fanjiyun · 2020-05-15T10:31:39Z

Signed-off-by: fanjiyun fan.jiyun@zte.com.cn

- What I did
libnetwork allows setting the priority of network interface, but I'm not sure why there's no api to support it. So, I made some changes to allow the user to control the network interface order for containers.
related issue: #25181

Relevant PRs:
moby/libnetwork#2550 (open)
docker/cli#2529(open)

- How I did it
add some options for docker create, docker run, docker network connect. i.e.,

$ docker create --network name=my-network,priority=1 mynginx
$ docker run --network name=my-network,priority=2 mynginx
$ docker network connect --priority 3 my-network my-container

priority deafult to 0, and the higher the value, the higher the priority of the network interface

- How to verify it

$ docker create --name t1 --network name=net1,priority=1 mynginx sleep 1000
$ docker network connect --priority 2 net2 t1
$ docker network connect --priority 3 net3 t1
$ docker start t1

network interface order: net3 > net2 > net1

$ docker exec t1 ifconfig  
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.20.0.2  netmask 255.255.0.0  broadcast 172.20.255.255  ---net3
		...
eth1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.19.0.3  netmask 255.255.0.0  broadcast 172.19.255.255  ---net2
		...
eth2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.18.0.3  netmask 255.255.0.0  broadcast 172.18.255.255  ---net1
		...

or

$ docker run -d --name t1 --network name=net1,priority=1 mynginx:v1 sleep 1000
$ docker network connect --priority 2 net2 t1
$ docker network connect --priority 3 net3 t1
$ docker restart t1  (container restart required)

$docker exec t1 ifconfig
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.20.0.2  netmask 255.255.0.0  broadcast 172.20.255.255  ---net3
		...
eth1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.19.0.2  netmask 255.255.0.0  broadcast 172.19.255.255  ---net2
        ether 02:42:ac:13:00:02  txqueuelen 0  (Ethernet)
		...	
eth2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.18.0.2  netmask 255.255.0.0  broadcast 172.18.255.255  ---net1
        ether 02:42:ac:12:00:02  txqueuelen 0  (Ethernet)
		...

- Description for the changelog

- A picture of a cute animal (not mandatory but encouraged)

Signed-off-by: fanjiyun <fan.jiyun@zte.com.cn>

fanjiyun · 2020-05-15T10:39:41Z

It depends on vendor moby/libnetwork#2550.
But I don't know what I should do for vendor?

Vlad1mir-D · 2023-04-28T11:59:52Z

Any updates? :)

cpuguy83

This looks ok.
Hunting through libnetwork this is poorly documented it seems like this is used to sort endpoints when adding them and as a key when deleting

I'd prefer if priority were set based on order of joins, unfortunately the API specifies this in a map which we cannot sort.

I'm curious what the need for priority is? Is this just to control interface names? It may be better to just provide a way to customize the name.
I also think the naming is a little confusing.

In any case, if we do add this we'll need the field to be added to the api docs.
https://github.com/moby/moby/blob/master/api/swagger.yaml
Also a doc string on the type would be helpful.

corhere · 2023-04-28T15:25:45Z

In addition to controlling the interface names, the order of endpoint joins may have something to do with which interface's gateway becomes the default gateway for the container. @neersighted and I were just talking about default gateways last week! I would also prefer allowing interface names, and which interface is the default gateway, to be set explicitly over doing it in a roundabout fashion with priority.

thaJeztah · 2023-04-28T16:57:44Z

The related ticket was for controlling the interface name when joining a network. At the time it was created, we didn't have per-network options, but with the advanced sytax that was added, at least the UX would now allow it;

Control interface name in docker multiple networking #25181 (comment)

One thing to look into for that is that currently the API does not allow multiple networks to be specified when creating a container. This effectively is an "artificial" limitation; it was blocked at the time because the UX didn't allow for this, but the CLI already was updated to support it. I asked @akerouanton to look if there's actual technical reasons remaining to not allow it (and if not, to remove that error, and support it).

akerouanton · 2025-01-07T09:18:09Z

This was implemented in #48936, so let me close this PR. Thanks for your contribution!

control network interface order for containers

2b3dc43

Signed-off-by: fanjiyun <fan.jiyun@zte.com.cn>

This was referenced May 15, 2020

control network interface order for containers docker/cli#2529

Closed

reduce parameters for func JoinOptionPriority moby/libnetwork#2550

Merged

aradmidias mentioned this pull request Sep 1, 2020

Predictive interface order / default gateway moby/libnetwork#2093

Closed

thaJeztah added area/networking kind/enhancement Enhancements are not bugs or new features but can improve usability or performance. status/2-code-review labels Oct 31, 2020

cpuguy83 requested changes Apr 28, 2023

View reviewed changes

cpuguy83 requested a review from corhere April 28, 2023 15:13

akerouanton closed this Jan 7, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

control network interface order for containers #40974

control network interface order for containers #40974

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

control network interface order for containers #40974

control network interface order for containers #40974

Uh oh!

Conversation

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!