无法使用 docker-compose 和 podman 解析主机名
Unable to resolve hostname with docker-compose and podman
我正在尝试使用这个项目部署一个 mastodon 服务器:https://github.com/tootsuite/mastodon
我是 运行 Docker-Fedora 33 服务器上的 Compose 和 Podman。
$ docker-compose --version
docker-compose version 1.27.4, build unknown
$ docker --version
podman version 3.0.1
$ cat /etc/fedora-release
Fedora release 33 (Thirty Three)
我不得不对 docker-compose.yml 进行一些更改以使其与 Podman 一起使用。你可以在下面看到我的整个配置文件。
version: '3'
services:
db:
restart: always
image: postgres:9.6-alpine
shm_size: 256mb
networks:
- internal_network
healthcheck:
test: ["CMD", "pg_isready", "-U", "postgres"]
timeout: 45s
interval: 10s
retries: 10
volumes:
- ./postgres:/var/lib/postgresql/data
environment:
- POSTGRES_HOST_AUTH_METHOD=trust
redis:
restart: always
image: redis:6.0-alpine
networks:
- internal_network
healthcheck:
test: ["CMD", "redis-cli", "ping"]
timeout: 45s
interval: 10s
retries: 10
volumes:
- ./redis:/data
# es:
# restart: always
# image: docker.elastic.co/elasticsearch/elasticsearch-oss:6.8.10
# environment:
# - "ES_JAVA_OPTS=-Xms512m -Xmx512m"
# - "cluster.name=es-mastodon"
# - "discovery.type=single-node"
# - "bootstrap.memory_lock=true"
# networks:
# - internal_network
# healthcheck:
# test: ["CMD-SHELL", "curl --silent --fail localhost:9200/_cluster/health || exit 1"]
# volumes:
# - ./elasticsearch:/usr/share/elasticsearch/data
# ulimits:
# memlock:
# soft: -1
# hard: -1
web:
# build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: bash -c "rm -f /mastodon/tmp/pids/server.pid; bundle exec rails s -p 3000"
networks:
- external_network
- internal_network
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:3000/health || exit 1"]
timeout: 45s
interval: 10s
retries: 10
ports:
- "127.0.0.1:3000:3000"
depends_on:
- db
- redis
# - es
volumes:
- ./public/system:/mastodon/public/system
streaming:
build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: node ./streaming
networks:
- external_network
- internal_network
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:4000/api/v1/streaming/health || exit 1"]
timeout: 45s
interval: 10s
retries: 10
ports:
- "127.0.0.1:4000:4000"
depends_on:
- db
- redis
sidekiq:
build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: bundle exec sidekiq
depends_on:
- db
- redis
networks:
- external_network
- internal_network
volumes:
- ./public/system:/mastodon/public/system
## Uncomment to enable federation with tor instances along with adding the following ENV variables
## http_proxy=http://privoxy:8118
## ALLOW_ACCESS_TO_HIDDEN_SERVICE=true
# tor:
# image: sirboops/tor
# networks:
# - external_network
# - internal_network
#
# privoxy:
# image: sirboops/privoxy
# volumes:
# - ./priv-config:/opt/config
# networks:
# - external_network
# - internal_network
networks:
external_network:
internal_network:
internal: true
这是与存储库中文件的远程版本的差异:
(tl;dr:我添加了健康检查选项和一个环境变量来授权 运行 postgres 没有密码,并评论了构建选项以使用 repo 中的图像,因为构建也失败了)
$ git diff docker-compose.yml
diff --git a/docker-compose.yml b/docker-compose.yml
index 52eea7a74..a8e047ec7 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -9,8 +9,13 @@ services:
- internal_network
healthcheck:
test: ["CMD", "pg_isready", "-U", "postgres"]
+ timeout: 45s
+ interval: 10s
+ retries: 10
volumes:
- ./postgres:/var/lib/postgresql/data
+ environment:
+ - POSTGRES_HOST_AUTH_METHOD=trust
redis:
restart: always
@@ -19,6 +24,9 @@ services:
- internal_network
healthcheck:
test: ["CMD", "redis-cli", "ping"]
+ timeout: 45s
+ interval: 10s
+ retries: 10
volumes:
- ./redis:/data
@@ -42,7 +50,7 @@ services:
# hard: -1
web:
- build: .
+ # build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
@@ -52,6 +60,9 @@ services:
- internal_network
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:3000/health || exit 1"]
+ timeout: 45s
+ interval: 10s
+ retries: 10
ports:
- "127.0.0.1:3000:3000"
depends_on:
@@ -72,6 +83,9 @@ services:
- internal_network
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:4000/api/v1/streaming/health || exit 1"]
+ timeout: 45s
+ interval: 10s
+ retries: 10
ports:
- "127.0.0.1:4000:4000"
depends_on:
生成机密没问题,但在这个命令上失败了:
$ sudo docker-compose run --rm web bundle exec rails db:migrate
Creating network "mastodon_internal_network" with the default driver
Creating network "mastodon_external_network" with the default driver
Creating mastodon_db_1 ... done
Creating mastodon_redis_1 ... done
Creating mastodon_web_run ... done
rails aborted!
PG::ConnectionBad: could not translate host name "db" to address: Name or service not known
我已经在多个项目中使用了 Docker-Compose 和 Podman 3.0 的组合,而且我在网络内部解析主机名方面从未遇到过任何问题。请问这种情况是不是一定要指定驱动
我还想要一种方法来测试我是否可以从 Web 容器使用此主机名访问数据库服务,如果问题出在代码中(我非常怀疑,但我想确定)。
EDIT1:数据库服务日志显示该服务似乎 运行 正常并准备接受连接
$ sudo docker logs -f mastodon_db_1
PostgreSQL Database directory appears to contain a database; Skipping initialization
LOG: database system was shut down at 2021-04-01 07:02:04 UTC
LOG: MultiXact member wraparound protections are now enabled
LOG: database system is ready to accept connections
LOG: autovacuum launcher started
我找到了解决办法:删除网络定义。
听起来很便宜,但确实有效。
所以最后的 docker-compose.yml 看起来像这样:
version: '3'
services:
db:
restart: always
image: postgres:9.6-alpine
shm_size: 256mb
healthcheck:
test: ["CMD", "pg_isready", "-U", "postgres"]
timeout: 45s
interval: 10s
retries: 10
volumes:
- ./postgres:/var/lib/postgresql/data
environment:
- POSTGRES_HOST_AUTH_METHOD=trust
redis:
restart: always
image: redis:6.0-alpine
healthcheck:
test: ["CMD", "redis-cli", "ping"]
timeout: 45s
interval: 10s
retries: 10
volumes:
- ./redis:/data
# es:
# restart: always
# image: docker.elastic.co/elasticsearch/elasticsearch-oss:6.8.10
# environment:
# - "ES_JAVA_OPTS=-Xms512m -Xmx512m"
# - "cluster.name=es-mastodon"
# - "discovery.type=single-node"
# - "bootstrap.memory_lock=true"
# networks:
# - internal_network
# healthcheck:
# test: ["CMD-SHELL", "curl --silent --fail localhost:9200/_cluster/health || exit 1"]
# volumes:
# - ./elasticsearch:/usr/share/elasticsearch/data
# ulimits:
# memlock:
# soft: -1
# hard: -1
web:
# build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: bash -c "rm -f /mastodon/tmp/pids/server.pid; bundle exec rails s -p 3000"
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:3000/health || exit 1"]
timeout: 45s
interval: 10s
retries: 10
ports:
- "127.0.0.1:3000:3000"
depends_on:
- db
- redis
# - es
volumes:
- ./public/system:/mastodon/public/system
streaming:
build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: node ./streaming
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:4000/api/v1/streaming/health || exit 1"]
timeout: 45s
interval: 10s
retries: 10
ports:
- "127.0.0.1:4000:4000"
depends_on:
- db
- redis
sidekiq:
build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: bundle exec sidekiq
depends_on:
- db
- redis
volumes:
- ./public/system:/mastodon/public/system
## Uncomment to enable federation with tor instances along with adding the following ENV variables
## http_proxy=http://privoxy:8118
## ALLOW_ACCESS_TO_HIDDEN_SERVICE=true
# tor:
# image: sirboops/tor
# networks:
# - external_network
# - internal_network
#
# privoxy:
# image: sirboops/privoxy
# volumes:
# - ./priv-config:/opt/config
# networks:
# - external_network
# - internal_network
我正在尝试使用这个项目部署一个 mastodon 服务器:https://github.com/tootsuite/mastodon
我是 运行 Docker-Fedora 33 服务器上的 Compose 和 Podman。
$ docker-compose --version
docker-compose version 1.27.4, build unknown
$ docker --version
podman version 3.0.1
$ cat /etc/fedora-release
Fedora release 33 (Thirty Three)
我不得不对 docker-compose.yml 进行一些更改以使其与 Podman 一起使用。你可以在下面看到我的整个配置文件。
version: '3'
services:
db:
restart: always
image: postgres:9.6-alpine
shm_size: 256mb
networks:
- internal_network
healthcheck:
test: ["CMD", "pg_isready", "-U", "postgres"]
timeout: 45s
interval: 10s
retries: 10
volumes:
- ./postgres:/var/lib/postgresql/data
environment:
- POSTGRES_HOST_AUTH_METHOD=trust
redis:
restart: always
image: redis:6.0-alpine
networks:
- internal_network
healthcheck:
test: ["CMD", "redis-cli", "ping"]
timeout: 45s
interval: 10s
retries: 10
volumes:
- ./redis:/data
# es:
# restart: always
# image: docker.elastic.co/elasticsearch/elasticsearch-oss:6.8.10
# environment:
# - "ES_JAVA_OPTS=-Xms512m -Xmx512m"
# - "cluster.name=es-mastodon"
# - "discovery.type=single-node"
# - "bootstrap.memory_lock=true"
# networks:
# - internal_network
# healthcheck:
# test: ["CMD-SHELL", "curl --silent --fail localhost:9200/_cluster/health || exit 1"]
# volumes:
# - ./elasticsearch:/usr/share/elasticsearch/data
# ulimits:
# memlock:
# soft: -1
# hard: -1
web:
# build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: bash -c "rm -f /mastodon/tmp/pids/server.pid; bundle exec rails s -p 3000"
networks:
- external_network
- internal_network
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:3000/health || exit 1"]
timeout: 45s
interval: 10s
retries: 10
ports:
- "127.0.0.1:3000:3000"
depends_on:
- db
- redis
# - es
volumes:
- ./public/system:/mastodon/public/system
streaming:
build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: node ./streaming
networks:
- external_network
- internal_network
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:4000/api/v1/streaming/health || exit 1"]
timeout: 45s
interval: 10s
retries: 10
ports:
- "127.0.0.1:4000:4000"
depends_on:
- db
- redis
sidekiq:
build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: bundle exec sidekiq
depends_on:
- db
- redis
networks:
- external_network
- internal_network
volumes:
- ./public/system:/mastodon/public/system
## Uncomment to enable federation with tor instances along with adding the following ENV variables
## http_proxy=http://privoxy:8118
## ALLOW_ACCESS_TO_HIDDEN_SERVICE=true
# tor:
# image: sirboops/tor
# networks:
# - external_network
# - internal_network
#
# privoxy:
# image: sirboops/privoxy
# volumes:
# - ./priv-config:/opt/config
# networks:
# - external_network
# - internal_network
networks:
external_network:
internal_network:
internal: true
这是与存储库中文件的远程版本的差异:
(tl;dr:我添加了健康检查选项和一个环境变量来授权 运行 postgres 没有密码,并评论了构建选项以使用 repo 中的图像,因为构建也失败了)
$ git diff docker-compose.yml
diff --git a/docker-compose.yml b/docker-compose.yml
index 52eea7a74..a8e047ec7 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -9,8 +9,13 @@ services:
- internal_network
healthcheck:
test: ["CMD", "pg_isready", "-U", "postgres"]
+ timeout: 45s
+ interval: 10s
+ retries: 10
volumes:
- ./postgres:/var/lib/postgresql/data
+ environment:
+ - POSTGRES_HOST_AUTH_METHOD=trust
redis:
restart: always
@@ -19,6 +24,9 @@ services:
- internal_network
healthcheck:
test: ["CMD", "redis-cli", "ping"]
+ timeout: 45s
+ interval: 10s
+ retries: 10
volumes:
- ./redis:/data
@@ -42,7 +50,7 @@ services:
# hard: -1
web:
- build: .
+ # build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
@@ -52,6 +60,9 @@ services:
- internal_network
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:3000/health || exit 1"]
+ timeout: 45s
+ interval: 10s
+ retries: 10
ports:
- "127.0.0.1:3000:3000"
depends_on:
@@ -72,6 +83,9 @@ services:
- internal_network
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:4000/api/v1/streaming/health || exit 1"]
+ timeout: 45s
+ interval: 10s
+ retries: 10
ports:
- "127.0.0.1:4000:4000"
depends_on:
生成机密没问题,但在这个命令上失败了:
$ sudo docker-compose run --rm web bundle exec rails db:migrate
Creating network "mastodon_internal_network" with the default driver
Creating network "mastodon_external_network" with the default driver
Creating mastodon_db_1 ... done
Creating mastodon_redis_1 ... done
Creating mastodon_web_run ... done
rails aborted!
PG::ConnectionBad: could not translate host name "db" to address: Name or service not known
我已经在多个项目中使用了 Docker-Compose 和 Podman 3.0 的组合,而且我在网络内部解析主机名方面从未遇到过任何问题。请问这种情况是不是一定要指定驱动
我还想要一种方法来测试我是否可以从 Web 容器使用此主机名访问数据库服务,如果问题出在代码中(我非常怀疑,但我想确定)。
EDIT1:数据库服务日志显示该服务似乎 运行 正常并准备接受连接
$ sudo docker logs -f mastodon_db_1
PostgreSQL Database directory appears to contain a database; Skipping initialization
LOG: database system was shut down at 2021-04-01 07:02:04 UTC
LOG: MultiXact member wraparound protections are now enabled
LOG: database system is ready to accept connections
LOG: autovacuum launcher started
我找到了解决办法:删除网络定义。
听起来很便宜,但确实有效。
所以最后的 docker-compose.yml 看起来像这样:
version: '3'
services:
db:
restart: always
image: postgres:9.6-alpine
shm_size: 256mb
healthcheck:
test: ["CMD", "pg_isready", "-U", "postgres"]
timeout: 45s
interval: 10s
retries: 10
volumes:
- ./postgres:/var/lib/postgresql/data
environment:
- POSTGRES_HOST_AUTH_METHOD=trust
redis:
restart: always
image: redis:6.0-alpine
healthcheck:
test: ["CMD", "redis-cli", "ping"]
timeout: 45s
interval: 10s
retries: 10
volumes:
- ./redis:/data
# es:
# restart: always
# image: docker.elastic.co/elasticsearch/elasticsearch-oss:6.8.10
# environment:
# - "ES_JAVA_OPTS=-Xms512m -Xmx512m"
# - "cluster.name=es-mastodon"
# - "discovery.type=single-node"
# - "bootstrap.memory_lock=true"
# networks:
# - internal_network
# healthcheck:
# test: ["CMD-SHELL", "curl --silent --fail localhost:9200/_cluster/health || exit 1"]
# volumes:
# - ./elasticsearch:/usr/share/elasticsearch/data
# ulimits:
# memlock:
# soft: -1
# hard: -1
web:
# build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: bash -c "rm -f /mastodon/tmp/pids/server.pid; bundle exec rails s -p 3000"
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:3000/health || exit 1"]
timeout: 45s
interval: 10s
retries: 10
ports:
- "127.0.0.1:3000:3000"
depends_on:
- db
- redis
# - es
volumes:
- ./public/system:/mastodon/public/system
streaming:
build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: node ./streaming
healthcheck:
test: ["CMD-SHELL", "wget -q --spider --proxy=off localhost:4000/api/v1/streaming/health || exit 1"]
timeout: 45s
interval: 10s
retries: 10
ports:
- "127.0.0.1:4000:4000"
depends_on:
- db
- redis
sidekiq:
build: .
image: tootsuite/mastodon
restart: always
env_file: .env.production
command: bundle exec sidekiq
depends_on:
- db
- redis
volumes:
- ./public/system:/mastodon/public/system
## Uncomment to enable federation with tor instances along with adding the following ENV variables
## http_proxy=http://privoxy:8118
## ALLOW_ACCESS_TO_HIDDEN_SERVICE=true
# tor:
# image: sirboops/tor
# networks:
# - external_network
# - internal_network
#
# privoxy:
# image: sirboops/privoxy
# volumes:
# - ./priv-config:/opt/config
# networks:
# - external_network
# - internal_network