Home > OS >  Can docker host intercept local traffic inside a container?
Can docker host intercept local traffic inside a container?

Time:11-12

Is it possible for the docker host to observe the communication between two processes running inside the same container? The processes use TCP on localhost for communication.

Most of the documentation I see talk about sniffing on the docker0 interface or any interface created by docker-compose. But this would be outbound/inbound traffic on the network interface. In my case all communication is local.

CodePudding user response:

enter image description here

I used bpftrace with tcpconnect.bt (or tcpaccept.bt) as you can see it can observe container localhost to container localhost tcp connect (or accept)

if you want to more detail, you could write your own bpf program

Page link:https//www.codepudding.com/os/188747.html

Prev:docker aiohttp service cannot connect to another docker fastapi service
Next:Docker build file image issue
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding