Docker Networking Series – II Overlay Networks

Overlay Network Driver

  • Refer Here for Docker Swarm related info.
  • Docker Swarm uses overlay networking to communicate between multiple Docker Hosts.
  • In this series lets try to understand concepts of the Docker Overlay Network Driver

How Packets flow through the Overlay Network Driver

Preview

In this diagram, the packet flow on an overlay network is shown. Here are the steps that take place when c1 sends c2 packets across their shared overlay network:

* c1 does a DNS lookup for c2. Since both containers are on the same overlay network the Docker Engine local DNS server resolves c2 to its overlay IP address 10.0.0.3.
* An overlay network is a L2 segment so c1 generates an L2 frame destined for the MAC address of c2.
* If this is the first time c1 has contacted c2, c1 issues an ARP request for c2, which is answered by the local operating system using an entry statically programmed by the local Docker Engine.
* The frame is encapsulated with a VXLAN header by the overlay network driver. The distributed overlay control plane manages the locations and state of each VXLAN tunnel endpoint so it knows that c2 resides on host-B at the physical address of 192.168.0.3. That address becomes the destination address of the underlay IP header.
* Once encapsulated the packet is sent. The physical network is responsible of routing or bridging the VXLAN packet to the correct host.
* The packet arrives at the eth0 interface of host-B and is decapsulated by the overlay network driver. The original L2 frame from c1 is passed to c2's eth0 interface and up to the listening application.

  • When you create overlay network as mentioned in the swarm series, two network drivers are create

    • Overlay: This points to the overlay network
    • docker_gwbridge: The egress bridge is for traffic leaving the cluster. only one docker_gwbride exists per host. This bridge is used for ingress/egress communications not for container to container communications with in overlay.

  • The underlying internal architecture look like this

Preview

  • Refer [here] for overlay networking tutorial.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

About continuous learner

devops & cloud enthusiastic learner