Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Podman-hosted containers may not be able to reach Aspire services #4136

Open
timheuer opened this issue May 9, 2024 · 8 comments
Open

Podman-hosted containers may not be able to reach Aspire services #4136

timheuer opened this issue May 9, 2024 · 8 comments
Labels
area-app-model Issues pertaining to the APIs in Aspire.Hosting, e.g. DistributedApplication area-orchestrator external Issues that represent work that's external to this repo. podman Issues related to using Podman for dev-time container management
Milestone
Backlog

Comments

@timheuer
Copy link
Member

timheuer commented May 9, 2024

Using the HealthChecksUI sample in the dotnet/aspire-samples repo and Podman, the HealthChecks UI dashboard was not able to reach the healthchecks URIS:

Image

with looking at the logs exceptions:

GetHealthReport threw an exception when trying to get report from http://host.containers.internal:61669/healthz configured with name webfrontend.
      System.Net.Http.HttpRequestException: Connection refused (host.containers.internal:61669)
       ---> System.Net.Sockets.SocketException (111): Connection refused

This appears to be a common issue with Podman 5+ presently: containers/podman#22237

This operates differently when just using Docker and the host.docker.internal URIs don't seem to be impacted, but Podman and the mappings used in the Podman machine network config seem to impact these situations where a container needing to accessing something at the host.containers.internal URI may fail given this issue.
@DamianEdwards DamianEdwards added area-orchestrator area-app-model Issues pertaining to the APIs in Aspire.Hosting, e.g. DistributedApplication and removed area-dashboard labels May 9, 2024
@dbreshears dbreshears added external Issues that represent work that's external to this repo. podman Issues related to using Podman for dev-time container management labels Jun 3, 2024
@NikiforovAll
Copy link

The issue also reproduces when I attempt to access Postgres using PgAdmin. Is there a possible workaround for this problem?

Context:
Podman Desktop for my Windows 10 machine using WSL

@karolz-ms
Copy link
Member

Putting on backlog since this is mostly an external Podman issue.

@NikiforovAll I cannot think of a simple workaround at the moment, sorry.

@karolz-ms karolz-ms added this to the Backlog milestone Jul 15, 2024
@mitchdenny mitchdenny mentioned this issue Sep 2, 2024
Closed
1 task
@mitchdenny
Copy link
Member

Related: #5510

@arielmoraes
Copy link

arielmoraes commented Sep 4, 2024
edited
Loading

@karolz-ms I'm having a similar issue when trying to make Docker containers reach the host projects. The Aspire proxy does not seem to listen on all interfaces causing a Connection Refused:

image

The only working IP is 127.0.0.1 as expected, but when using host.docker.internal you can have two scenarios:

  1. When accessing host.docker.internal from the host itself it resolves to the machine's IP address (default configuration)
  2. When accessing from a container it resolves to the host IP associated with the Docker network

So the request won't be accepted if the Aspire proxy does not listen on all interfaces.

@karolz-ms
Copy link
Member

@arielmoraes correct. Aspire proxy listens on localhost-related interfaces by default.

@mitchdenny @davidfowl I was going to follow with "you can add an Endpoint with a host address that refers to the Docker bridge network" but I noticed that the EndpointAnnotation does not have an "address" property. So it does not seem possible from the app model to bind to arbitrary (host) network interface. Am I correct, and if yes, is this something we should enable?

@davidfowl davidfowl mentioned this issue Sep 7, 2024
Closed
@davidfowl
Copy link
Member

This is a container to host problem that we need to figure out how to address that problem in both WSL and podman.

@davidfowl davidfowl added the bug label Sep 16, 2024
@davidfowl
Copy link
Member

The fixes we made to Aspire 9 will make things like pgadmin, pgweb, redis commander etc will work out of the box using container to container networking. The edge cases are around container to executable/project networking. We will address that post 9.

@davidfowl davidfowl removed the bug label Oct 16, 2024
@atrauzzi
Copy link

#6846 and #6635 related?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area-app-model Issues pertaining to the APIs in Aspire.Hosting, e.g. DistributedApplication area-orchestrator external Issues that represent work that's external to this repo. podman Issues related to using Podman for dev-time container management
Projects
None yet
Milestone
Backlog
Development

No branches or pull requests
9 participants
@timheuer @davidfowl @atrauzzi @DamianEdwards @mitchdenny @dbreshears @arielmoraes @NikiforovAll @karolz-ms