Reputation: 516
How to simulate network drops for each individual Docker container at will?
I want to perform some stress-test for the applications that are run inside docker containers. Simple scenarios like turn on/off dropping all the packets for a specified IP address.
I've tried some tools, but none of them seem to satisfy me:
Disconnecting containers from the bridge network - sadly it drops all connections, not only to the specified ips.
Setting up iptables rules from inside a container - it requires a container to be launched in privileged mode, which is not a great practice (I'd like to have an approach that is suitable even for production environments).
Modifying the host's iptables also doesn't look like an option - I'd like to create network issues for a specific container, not for all the containers on the host.
What are some possible ways I should look into?
Are there any chaos engineering tools that are to-go options for such needs?
Upvotes: 5
Views: 1968
Answers (1)
Reputation: 883
For docker container stuff, we normally use https://github.com/alexei-led/pumba which basically brings you all the features of tc into the docker world. In k8s we normally deploy it as a DaemonSet and then (via a regex) attack specific pods / containers / apps). If you give us a more specific question I am happy to answer specific details.
Upvotes: 4
Related Questions
- How to simulate Docker container losing internet connectivity?
- Docker - How to write a custom load balancer?
- Simulate network interruption for specific docker pods
- Using docker to emulate a network on a single computer
- Multiple Docker containers to simulate multiple servers
- Simulate different network condition in docker
- Create multiple Docker network connections
- Connect docker containers directly to host subnet
- Multiple NIC and Docker containers
- Leverage iptables to drop packets between docker containers