Docker compose:混乱模式下的容器
正如标题所说,我需要构建一个docker容器,能够嗅探网络上的所有流量 这是我目前的docker compose文件:Docker compose:混乱模式下的容器,docker,networking,docker-compose,promiscuous-mode,Docker,Networking,Docker Compose,Promiscuous Mode,正如标题所说,我需要构建一个docker容器,能够嗅探网络上的所有流量 这是我目前的docker compose文件: services: opencpn: build: context: ./opencpn dockerfile: Dockerfile container_name: opencpn image: opencpn ports: - "8080:8080" networks:
services:
opencpn:
build:
context: ./opencpn
dockerfile: Dockerfile
container_name: opencpn
image: opencpn
ports:
- "8080:8080"
networks:
ship:
ipv4_address: 172.20.0.2
proxyais:
build:
context: ./proxyais
dockerfile: Dockerfile
image: proxyais
container_name: proxyais
ports:
- "10110:10110/udp"
- "18304:18304/udp"
networks:
ship:
ipv4_address: 172.20.0.3
environment:
- VDR=127.0.0.1
- IPR=172.20.0.3
- BRIDGE=172.20.0.2
- VH=172.20.0.4
- GW=172.20.0.1
suricata:
build:
context: ./suricata
dockerfile: Dockerfile
image: suricata
container_name: suricata
cap_add:
- NET_ADMIN
- SYS_NICE
# network_mode: host <-- it works but I don't want to use it like this
networks:
ship:
ipv4_address: 172.20.0.5
networks:
ship:
name: ship_network
ipam:
config:
- subnet: 172.20.0.0/16
gateway: 172.20.0.1
服务:
opencpn:
建造:
上下文:./opencpn
dockerfile:dockerfile
容器名称:opencpn
图片:opencpn
端口:
- "8080:8080"
网络:
船舶:
ipv4_地址:172.20.0.2
代理:
建造:
上下文:./proxyais
dockerfile:dockerfile
图片:proxyais
容器名称:proxyais
端口:
-“10110:10110/udp”
-“18304:18304/udp”
网络:
船舶:
ipv4_地址:172.20.0.3
环境:
-VDR=127.0.0.1
-IPR=172.20.0.3
-桥=172.20.0.2
-VH=172.20.0.4
-GW=172.20.0.1
苏里塔:
建造:
上下文:./suricata
dockerfile:dockerfile
图片:苏丽塔
集装箱名称:苏里塔卡
第(二)章增补:
-网络管理员
-很好
#网络模式:主机