How do I make docker container ineraccessible from wireguard interface?

This page summarizes the projects mentioned and recommended in the original post on /r/docker

Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
  • innernet

    A private network system that uses WireGuard under the hood.

    Several VPS servers around the US connected to my laptop via wireguard mesh network. For wireguard mesh network Im using tool called innernet (https://github.com/tonarino/innernet). So basically its like my laptop and vps servers are on same internal network. VPS ip = 10.32.89.1 laptop ip = 10.32.90.1 Each server on the network has this virtual interface defined (not sure if this matters): innernet VPS server has mysql container where I dont expose 3306 port to the host. How can I make it - so I can connect to that dockerized mysql server from my laptop without mounting port to the host? and thus making it visible to everyone? Is that what docker macvlan is for? DO I need to create a network that has innernet interface as a parent or something? I've tried this: ```bash docker network create \ -d macvlan \ --attachable \ --subnet=172.40.110.0/24 \ --gateway=172.40.110.1 \ -o parent=innernet \ infranet2 ``` And then I've tried joinig mysql container to it: ```bash docker network connect infranet2 mysql-server ``` BUt I only get an error: ``` root@hostname:~$ sudo docker network connect infranet2mysql-server Error response from daemon: failed to create the macvlan port: invalid argument ```

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts