How make docker to work under Cisco AnyConnect VPN connection?

Question

When I'm initializing VPN connection via Cisco AnyConnect client, I'm loosing connection to docker daemon. My guess (backed by some googling) is that this has something to do with with routing rewritten by AnyConnect.

The question is - how this can be circumvented? I've tried to launch and re-launch docker daemon after VPN connection established but this naïve attempt just predictably failed.

Then I've googled a bunch of proposed quite kludgy solutions, for instance, this guy suggests to forward ports and then just always use docker --tlsverify=false - I don't want to do this.

Other thing I've tried to do is to use solution mentioned here:

docker-machine create --driver virtualbox --virtualbox-hostonly-cidr "25.0.1.100/24" default

This does not work for me as well.

So I'm looking for canonical solution which can be beneficial for other docker users as well.

My docker version is 1.11.2, OS is OS X El Capitan (10.11.6).

Answer 1

If you are facing this problem on Ubuntu 18.04, use the Network manager instead of Cisco AnyConnect:

sudo apt-get install network-manager-openvpn
sudo apt-get install network-manager-vpnc
sudo apt-get install network-manager-openconnect
sudo apt-get install network-manager-openvpn-gnome
sudo apt-get install network-manager-vpnc-gnome
sudo apt-get install network-manager-openconnect-gnome

Source: https://askubuntu.com/a/789478/868453

Answer 2

I only had problems with AnyConnect on OSX plus they stop development so instead I switched to openconnect, you can install it from homebrew

brew install openconnect

No more rewritten routes