Problem connecting to host from Docker container

posted 1 year ago

Jerry1098@sh.itjust.works

I followed this Guide to setup headscale with caddy. And tried to add Keycloak with this guide from the same guy.

Sadly my docker containers do not seem to be able to connect to the keycloak server. What happens is that if i try to download the openid configuration from the host (via wget) or from my local PC it just works. But the headscale server gets a timeout when trying to connect to the endpoint. When i use the internal docker name to connect to the keycloak container the connection works fine but then i get an error because its not the external url.

I experimented a bit and managed to reproduce the issue with a different container (running an ubuntu container and also getting a timeout when trying to download the config from keycloak). If i run the container with the host network i works just fine.

Does anyone know how to fix this?

PS: i also tried the example from the guide with gitea an its also the same problem

Update: I tried most suggestions and for some reason it just didn’t work. My solution that is working now is that I bind the container ports to localhost only (by using p.e.: ports: -“127.0.0.1:4567:8080”) and using the caddy server in host network mode. Now all containers can connect like expected and are working flawlessly. Thanks for all your suggestions :)

Sort:

Hot Top Controversial New Old

[ - ]

CaptainAniki@lemmy.flight-crew.org

2 points

1 year ago

Deleted by creator

permalink

report

[ - ]

Jerry1098@sh.itjust.worksOP

1 point

1 year ago

I using docker compose: Caddy Keycloak and Headscale

permalink

report

parent

[ - ]

webuge@lemmy.dbzer0.com

2 points

1 year ago

I think it would be easier to use only one docker compose file with all services, and use the same network across all of them

permalink

report

parent

[ - ]

Jerry1098@sh.itjust.worksOP

3 points

1 year ago

But the network is created externally, so shouldn’t this be the same?

permalink

report

parent

Show more comments

[ - ]

Jerry1098@sh.itjust.worksOP

1 point

1 year ago

And container to container works fine, im able to communicate p.e. with keycloak:9000

report

[ - ]

1 point

1 year ago

this is a long shot but the keycloack container is connected to 2 networks, does this couse a problem?

i’m saying this because traefik need you to specify on the labels which docker network it should use. maybe there is something similar.

but as i said this is a very long shot and it’s probably bs

permalink

report

parent

[ - ]

vsis@feddit.cl

1 point

1 year ago

Are you using Docker Desktop? It uses a headless virtual machine inside host, so connecting to host is tricky.

You may use hostname host.docker.internal from the container to access host.

edit: link to the docs https://docs.docker.com/desktop/networking/#i-want-to-connect-from-a-container-to-a-service-on-the-host

permalink

report

Selfhosted

!selfhosted@lemmy.world

Create post

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.

Rules:

Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it’s not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

Community stats

3.6K
Monthly active users
3.4K
Posts
77K
Comments

Community stats

Community moderators