Is true Layer 2 access possible with docker container?

Question

All the container networking examples I saw seems to provide container a L3 network which means it is on a separate L2 network from host. Bridge interface also seems to for L2 network between containers only.

Is it possible to launch a docker container such that it has full Layer 2 access. For example, to run tcpdump within the container to capture packet of a specific host interface?

Daniel B · Accepted Answer · 2021-09-07 18:40:14Z

1

Sure. Launch a container with --network host and it’ll not get its own network namespace. This has massive security implications.

answered Sep 7, 2021 at 18:40

Daniel B

63.9k9 gold badges128 silver badges176 bronze badges

Add a comment |

Stack Exchange Network

Is true Layer 2 access possible with docker container?

1 Answer 1

You must log in to answer this question.

Not the answer you're looking for? Browse other questions tagged
networking
docker
.

Hot Network Questions

Is true Layer 2 access possible with docker container?

1 Answer 1

You must log in to answer this question.

Not the answer you're looking for? Browse other questions tagged networkingdocker.

Related

Hot Network Questions

Not the answer you're looking for? Browse other questions tagged
networking
docker
.