未能启动Debian Stretch Slim Docker容器与互联网访问
晚安,
我正在尝试使用Subgraph OS作为其主机系统启动Debian Stretch Slim Docker Container,并使用互联网访问。 虽然它是一个强化的操作系统,但我仍然不确定主机本身是否是这个问题。 使用sudo journalctl -f不会显示grsec正在被触发,并且我能够使用以下命令成功下载,安装和启动使用相同操作系统的debian容器:
sudo docker pull i386/debian:stretch-slim sudo docker run -i -t --mount type=bind,source=/home/user/.docker,destination=/home i386/debian:stretch-slim /bin/bash
虽然无法获得连接:
user@subgraph:~$ sudo docker run -i -t -p 80:80 --mount type=bind,source=/home/user/.docker,destination=/home i386/debian:stretch-slim /bin/bash docker: Error response from daemon: driver failed programming external connectivity on endpoint romantic_austin (b929d7f41bd912d5fc8c1b7d50bc911b8880f8b0ec077de46fe126daa501b422): (iptables failed: iptables --wait -t nat -A DOCKER -p tcp -d 0/0 --dport 80 -j DNAT --to-destination 172.17.0.2:80 ! -i docker0: iptables: No chain/target/match by that name. (exit status 1)). user@subgraph:~$
这就是我所做的一切,真的。 集装箱仍然像现在一样新。
有任何想法吗?
编辑:以下是命令的docker version和docker info的输出,如在评论中所要求的:
user@subgraph:~$ sudo docker version Client: Version: 17.09.0-ce API version: 1.32 Go version: go1.8.3 Git commit: afdb6d4 Built: Tue Sep 26 22:42:09 2017 OS/Arch: linux/amd64 Server: Version: 17.09.0-ce API version: 1.32 (minimum version 1.12) Go version: go1.8.3 Git commit: afdb6d4 Built: Tue Sep 26 22:40:48 2017 OS/Arch: linux/amd64 Experimental: false user@subgraph:~$ sudo docker info Containers: 17 Running: 0 Paused: 0 Stopped: 17 Images: 2 Server Version: 17.09.0-ce Storage Driver: overlay2 Backing Filesystem: extfs Supports d_type: true Native Overlay Diff: true Logging Driver: json-file Cgroup Driver: cgroupfs Plugins: Volume: local Network: bridge host macvlan null overlay Log: awslogs fluentd gcplogs gelf journald json-file logentries splunk syslog Swarm: inactive Runtimes: runc Default Runtime: runc Init Binary: docker-init containerd version: 06b9cb35161009dcb7123345749fef02f7cea8e0 runc version: 3f2f8b84a77f73d38244dd690525642a72156c64 init version: 949e6fa Security Options: apparmor seccomp Profile: default Kernel Version: 4.9.33-subgraph Operating System: Subgraph OS 1.0 (aaron) OSType: linux Architecture: x86_64 CPUs: 4 Total Memory: 15.58GiB Name: subgraph ID: 7EQH:SISC:NWJK:3RTB:2CSM:CFQ2:LTO3:TBXY:535R:WLKI:E3NP:6YTW Docker Root Dir: /var/lib/docker Debug Mode (client): false Debug Mode (server): false Registry: https://index.docker.io/v1/ Experimental: false Insecure Registries: 127.0.0.0/8 Live Restore Enabled: false WARNING: No cpu cfs quota support WARNING: No cpu cfs period support user@subgraph:~$