Swarm - Andrey Zhukov's Tech Blog

How to connect to a service in docker swarm with docker

March 15, 2019 docker, swarm | Comments

It’s a rare case, suppose there is a myapp swarm cluster with myapp_mongo database without published port and there is a need to run a command from some docker image with connection to this database.

By default docker stack deploy creates a non-attachable network, so docker run --network myapp_default will output Error response from daemon: Could not attach to network myapp_default: rpc error: code = PermissionDenied desc = network myapp_default not manually attachable.

A way to bypass it is to create a new attachable network and attach it to the service.

docker network create --driver overlay --attachable mongo_network
docker service update --network-add mongo_network myapp_mongo
docker run --rm --network mongo_network mongo:4.0.6 mongodump -h lsicloud_mongo ...
docker service update --network-rm mongo_network lsicloud_mongo
docker network rm mongo_network

How to update docker service using a version from docker-compose

September 18, 2018 docker, swarm | Comments

Here is a small script which compares the version of the running service and the version in the docker-compose file, if they are different it runs an update.

REDIS_VERSION=$(docker service ls | grep "redis" | awk '{print $5}')
REDIS_NEW_VERSION=$(grep -Po "image:\s*\Kredis:.*" docker-compose.yml)
if [ "$REDIS_VERSION" != "$REDIS_NEW_VERSION" ]; then
    echo "update $REDIS_VERSION -> $REDIS_NEW_VERSION"
    docker service update --image $REDIS_NEW_VERSION app_redis
fi

How to log user ip in Docker Swarm

March 20, 2018 docker, swarm | Comments

There is a long standing issue for this task. The logs looks like: 10.255.0.2 - - [15/Mar/2018:15:32:15 +0000] “GET / HTTP/2.0” 200

One of the solutions, from the issue’s comments, is to run a service in the host mode, the swarm load balancing for this service will not work. But if there is a load balancer behind the swarm cluster, it seems not a big problem.

Socket.IO in Docker Swarm

November 07, 2017 socketio, docker, swarm | Comments

Socket.IO requires the sticky sessions, so when it’s runned in Docker Swarm environment, the Swarm load balancer can forward the request to any node where the service is launched and there will be the 400 errors. The solution is to limit the number of nodes for Socket.IO service to one or to use another load balancer like Traefik or HAProxy.

How to run Docker Swarm localy

July 20, 2017 docker, swarm | Comments

Suppose there is an application which uses docker-compose to run and you want to try it in swarm mode.

First of all you need to initialize swarm nodes.

Nginx SSL configuration in Docker Swarm

June 02, 2017 docker, swarm, nginx | Comments

When you have several Nginx replicas in Docker Swarm and you need to share SSL certificate, you can use secrets.

Here is a short extract:

Nginx upstream problems in docker environment

May 23, 2017 nginx, docker, swarm | Comments

I have nginx as a proxy for a python application. To launch them I have a docker-compose.