无法从泊坞窗镜像连接到HTTPS(443)
我安装了一个新的专用服务器上的docker(在通用的Ubuntu 14.0 – Linux内核3.13.0-71)。 我安装了一个Ubuntu的Docker镜像来testing环境。 (docker运行-it Ubuntu的bash),我安装curl与openssl的支持。
当我尝试获取HTTP页面的内容时,我没有任何问题。 当我尝试加载HTTPS页面时,我的连接被拒绝:
root@835f01fef568:/# curl https://www.google.com curl: (7) Failed to connect to www.google.com port 443: Connection refused
在详细模式下我有:
root@835f01fef568:/# curl -V https://www.google.com curl 7.35.0 (x86_64-pc-linux-gnu) libcurl/7.35.0 OpenSSL/1.0.1f zlib/1.2.8 libidn/1.28 librtmp/2.3 Protocols: dict file ftp ftps gopher http https imap imaps ldap ldaps pop3 pop3s rtmp rtsp smtp smtps telnet tftp Features: AsynchDNS GSS-Negotiate IDN IPv6 Largefile NTLM NTLM_WB SSL libz TLS-SRP
如果我尝试在文件中logging跟踪,我有:
== Info: Rebuilt URL to: https://www.google.com/ == Info: Hostname was NOT found in DNS cache == Info: Trying 173.194.123.81... == Info: connect to 173.194.123.81 port 443 failed: Connection refused == Info: Trying 173.194.123.84... == Info: connect to 173.194.123.84 port 443 failed: Connection refused == Info: Trying 173.194.123.80... == Info: connect to 173.194.123.80 port 443 failed: Connection refused == Info: Trying 173.194.123.82... == Info: connect to 173.194.123.82 port 443 failed: Connection refused == Info: Trying 173.194.123.83... == Info: connect to 173.194.123.83 port 443 failed: Connection refused == Info: Trying 2607:f8b0:4006:80c::1013... == Info: Immediate connect fail for 2607:f8b0:4006:80c::1013: Network is unreachable == Info: Failed to connect to www.google.com port 443: Connection refused == Info: Closing connection 0
我可以做些什么:(这不是DNS问题,因为我可以在端口80上ping服务器或CURL http内容。它只与SSL连接有关。是否有人在这里有任何关于这个问题的想法?
谢谢
我发现问题的根源。 这里和主机的iptables问题有关
使用命令iptables -L -t nat
我发现有一个预先路由在所有被redirect到端口9092的httpsstream量上被激活,被另一个服务使用。