What should I do if Alibaba Cloud service cannot be accessed after docker mapping?

As a leading cloud computing service provider, Alibaba Cloud's cloud hosting, container services, serverless, object storage and other services have been widely recognized by users. Among them, Docker container technology is also an indispensable cloud computing service. However, when using Alibaba Cloud's Docker service, some users may encounter an inaccessible problem. This article will describe the causes and solutions to this problem.

Problem description

In the process of using Alibaba Cloud Docker service, users may encounter the following situation: after mapping the Docker container port to the cloud host port, the cloud host public port cannot be used. You can use the network IP and port to access the service in the container, but you can use the container's IP and port inside the cloud host to access the service normally.

Cause Analysis

The reason for this problem is that Alibaba Cloud's security group does not allow any inbound access by default, and users need to manually enable inbound access to the port. Specifically, after the user maps the container port to the cloud host port, if the corresponding port inbound rule is not enabled in the Alibaba Cloud console, access to the public IP and port of the cloud host will be blocked and the container will not be accessible. services in.

Solution

In order to solve this problem, users need to manually enable the inbound access rules of the port in the Alibaba Cloud console. The specific steps are as follows:

1. Log in to the Alibaba Cloud console. Find the cloud server ECS in the left navigation bar and enter the cloud server instance list page.
2. In the instance list page, find the cloud host instance for which port rules need to be set. Click the "Security Group" button behind the instance. In the security group page that pops up, find the security group corresponding to the cloud host and click the "Configure Rules" button.
3. In the security group rules page, select "Inbound access" and then click the "Add security group rule" button.
4. In the pop-up Add Security Group Rules page, fill in the corresponding rule information. For example, if you need to open port 80 in the container, you need to fill in the following information:

• Priority: Select a priority, usually fill in "1".
• Rule direction: Select "In direction".
• Authorization policy: Select "Allow".
• Protocol type: Select "TCP".
• Port range: Fill in the port numbers that need to be opened in the "Start Port" and "End Port", such as 80.
• Authorization type: Select "CIDR".
• Authorization object: Fill in the IP address segment that requires access to the port, such as 0.0.0.0/0.

5. After filling in the corresponding information, click the "OK" button to save the rule. After saving successfully, you can access the services in the container in the cloud host instance.

Summary

When using Alibaba Cloud's Docker service, if you are unable to access the services in the container, it is most likely because security group rules have not been set. For this reason, users need to manually set the inbound access rules for the corresponding ports in the Alibaba Cloud console to properly access the services in the container. I hope the methods and steps in this article can help users in need.

The above is the detailed content of What should I do if Alibaba Cloud service cannot be accessed after docker mapping?. For more information, please follow other related articles on the PHP Chinese website!