目錄
- 1.背景
- 1.1 問題描述
- 1.2 webserver代碼
- 3.Dockerfile文件
- 2.問題分析
- 3.解決方案
需要使用docker將golang的httpserver容器化。在這個(gè)過程中遇到了一個(gè)低級(jí)問題,golang http服務(wù)時(shí)端口無(wú)法訪問,特此記錄解決這個(gè)問題的過程。
1.背景
1.1 問題描述
問題描述: docker鏡像啟動(dòng)成果之后,通過curl不能訪問:
[root@hecs-205828 ~]# curl -XGET http://127.0.0.1:8360/hello curl: (56) Recv failure: Connection reset by peer
1.2 webserver代碼
go文件:main.go
package main
import (
"fmt"
"net/http"
"os"
"strings"
)
func main() {
http.HandleFunc("/hello", handler_hello)
http.HandleFunc("/healthz", handler_healthz)
http.ListenAndServe("127.0.0.1:8360", nil)
}
func handler_healthz(w http.ResponseWriter, r *http.Request) {
w.WriteHeader(http.StatusOK)
w.Write([]byte("OK"))
}
func handler_hello(w http.ResponseWriter, r *http.Request) {
fmt.Println("method = ", r.Method)
fmt.Println("URL = ", r.URL)
fmt.Println("RemoteAddr = ", r.RemoteAddr)
fmt.Println("IP = ", strings.Split(r.RemoteAddr, ":")[0])
fmt.Println("header = ", r.Header)
fmt.Println("body = ", r.Body)
fmt.Println(r.RemoteAddr, "連接成功")
for name, values := range r.Header {
for _, value := range values {
fmt.Println(name, value)
_, exits := w.Header()[name]
if exits {
w.Header().Add(name, value)
} else {
w.Header().Set(name, value)
}
}
}
VERSION := os.Getenv("VERSION")
fmt.Println("VERSION is :", VERSION)
w.Header().Set("VERSION", VERSION)
w.WriteHeader(http.StatusOK)
w.Write([]byte("hello http server"))
}
3.Dockerfile文件
Dockerfile文件:
FROM golang:1.17 AS build WORKDIR /web-server/ COPY . . ENV CGO_ENABLED=0 ENV GO111MODULE=on ENV GOPROXY=https://goproxy.cn,direct RUN GOOS=linux go build -installsuffix cgo -o web-server main.go FROM busybox COPY --from=build /web-server/web-server /web-server/web-server EXPOSE 8360 ENV ENV local WORKDIR /web-server/ ENTRYPOINT ["/web-server/web-server"]
2.問題分析
發(fā)現(xiàn)curl無(wú)法訪問docker容器中的服務(wù),telnet結(jié)果如下:
[root@hecs-205828 ~]# telnet 127.0.0.1 8360 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. Connection closed by foreign host.
于是,打算采用命令進(jìn)入docker容器內(nèi)部查看:
[root@hecs-205828 ~]# docker ps -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES dfb2b46abd34 httpserver:0.0.1 "/web-server/web-ser…" 27 hours ago Up 2 hours 0.0.0.0:8360->8360/tcp, :::8360->8360/tcp relaxed_mccarthy
通過docer ps -a 得到容器id為dfb2b46abd34。進(jìn)入容器:
[root@hecs-205828 ~]# docker exec -it dfb2b46abd34 sh
/web-server # ps
PID USER TIME COMMAND
1 root 0:00 /web-server/web-server
38 root 0:00 sh
94 root 0:00 sh
101 root 0:00 ps
/web-server # netstat -an |grep 8360
tcp 0 0 127.0.0.1:8360 0.0.0.0:* LISTEN
/web-server #
可以看到,在容器內(nèi)部實(shí)際上8360端口已經(jīng)被監(jiān)聽。容器訪問應(yīng)該不存在問題。 容器內(nèi)部支持wget:
/web-server # wget -q -O - http://127.0.0.1:8360/hello hello http server /web-server #
可以看到在docker服務(wù)內(nèi)部運(yùn)行是正常的。
查看其網(wǎng)絡(luò)端口衍射:
[root@hecs-205828 ~]# docker port dfb2b46abd34 8360/tcp -> 0.0.0.0:8360 8360/tcp -> :::8360
端口衍射也不存在問題。那么問題究竟出在什么地方呢? 忽然想到,容器內(nèi)部的nestat監(jiān)聽端口是127.0.0.1,于是瞬間明白了。 在容器內(nèi)部的監(jiān)聽端口為127.0.0.1的話,那么只能接受容器內(nèi)部來(lái)自127.0.0.1的本地回環(huán)訪問。來(lái)自容器外外部的訪問請(qǐng)求將被拒絕。 因此,這個(gè)問題的修復(fù)原因?qū)嶋H上很簡(jiǎn)單,只需要將main.go的中監(jiān)聽ip改為0.0.0.0即可。
3.解決方案
果斷將監(jiān)聽ip改為0.0.0.0:
func main() {
http.HandleFunc("/hello", handler_hello)
http.HandleFunc("/healthz", handler_healthz)
http.ListenAndServe("0.0.0.0:8360", nil)
}
之后重新制作鏡像:
sudo docker build . -t httpserver:0.0.2
然后啟動(dòng)本地鏡像:
sudo docker run -d -p 8260:8230 httpserver:0.0.2
啟動(dòng)之后:
[root@hecs-205828 ~]# docker ps -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES ae5e2bf431c7 httpserver:0.0.2 "/web-server/web-ser…" 50 minutes ago Up 50 minutes 0.0.0.0:8260->8360/tcp, :::8260->8360/tcp affectionate_nash dfb2b46abd34 httpserver:0.0.1 "/web-server/web-ser…" 27 hours ago Up 2 hours 0.0.0.0:8360->8360/tcp, :::8360->8360/tcp relaxed_mccarthy [root@hecs-205828 ~]#
之后再訪問新增的容器,結(jié)果正常:
[root@hecs-205828 ~]# curl -XGET http://127.0.0.1:8260/hello hello http server [root@hecs-205828 ~]#
問題解決。
