Hi guys, as per these two threads
I am having trouble accessing anything on port 80 in a container… Here’s a rundown of the situation…
- Oracle Cloud - ARM64 machine
- Ubuntu 22.04 is the host
- Debian 11 is in the container
- External block devices host the zfs storage pool
- Port 80 is open via the Oracle firewall and nmap confirms this
- Firewalld is the firewall that I’ve configured
- SSH works on a variety of ports
- Port 8033 works fine for a web control panel via
lxc config device add container1 myport8033 proxy listen=tcp:0.0.0.0:8033 connect=tcp:127.0.0.1:8033
- lxdbr0 is trusted via the following
sudo firewall-cmd --add-interface=lxdbr0 --zone=trusted --permanent
- Containers get IP4 and IP6 addresses
- nftables is being used by lxd
lxc info | grep firewall:
returns firewall: nftables
- Running
tcpdump
shows some weird traffic that doesn’t appear to correspond to the browser request I’m making
sudo tcpdump port 80 and '(tcp-syn|tcp-ack)!=0'
-
But the same command on the host appears to make sense and show’s port 80 traffic…
-
I’ve attached the output of
sudo nft list ruleset
at https://pastebin.com/1ExQziQn -
The container is listening on port 80
sudo netstat -tlpn | grep :80
returns the following
tcp 0 0 127.0.0.1:8084 0.0.0.0:* LISTEN 409/nginx: master p
tcp 0 0 127.0.0.1:8081 0.0.0.0:* LISTEN 96432/apache2
tcp 0 0 0.0.0.0:8033 0.0.0.0:* LISTEN 428/nginx: master p
tcp 0 0 10.23.140.106:80 0.0.0.0:* LISTEN 409/nginx: master p
tcp 0 0 10.23.140.106:8080 0.0.0.0:* LISTEN 96432/apache2
Does anyone have any ideas please?