0ct0pu5/moby
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
moby/libnetwork/drivers
History
Exact
Rob Murray c761353e7c Make 'internal' bridge networks accessible from host 
Prior to release 25.0.0, the bridge in an internal network was assigned
an IP address - making the internal network accessible from the host,
giving containers on the network access to anything listening on the
bridge's address (or INADDR_ANY on the host).

This change restores that behaviour. It does not restore the default
route that was configured in the container, because packets sent outside
the internal network's subnet have always been dropped. So, a 'connect()'
to an address outside the subnet will still fail fast.

Signed-off-by: Rob Murray <rob.murray@docker.com>
(cherry picked from commit 419f5a6372)
Signed-off-by: Albin Kerouanton <albinker@gmail.com>
2024-03-01 09:29:41 +01:00
..
bridge Make 'internal' bridge networks accessible from host 2024-03-01 09:29:41 +01:00
host libnetwork: move datastore Scope consts to libnetwork/scope 2023-07-28 21:56:48 +02:00
ipvlan libnetwork/datastore: drop (KVObject).DataScope() 2023-10-19 12:38:39 -04:00
macvlan libnetwork/datastore: drop (KVObject).DataScope() 2023-10-19 12:38:39 -04:00
null libnetwork: move datastore Scope consts to libnetwork/scope 2023-07-28 21:56:48 +02:00
overlay add //go:build directives to prevent downgrading to go1.16 language 2023-12-15 15:24:15 +01:00
remote migrate to github.com/containerd/log v0.1.0 2023-10-11 17:52:23 +02:00
windows libnetwork/datastore: drop (KVObject).DataScope() 2023-10-19 12:38:39 -04:00