最近在学 zookeeper ,按照 docker 官网的方式集群 zookeeper , 然后发现有路由找不到。最后问题解决了，随手记录下来。

原因是 firewalld 的没有信任 docker 的 ip 地址，*er 中也有类似的问题。

将所有 docker 的 ip 添加都白名单即可。

解决过程如下：

ifconfig

br-0e1da8b59f79: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500

        inet 172.19.0.1  netmask 255.255.0.0  broadcast 172.19.255.255

        ether 02:42:2d:4c:80:73  txqueuelen 0  (Ethernet)

        RX packets 0  bytes 0 (0.0 B)

        RX errors 0  dropped 0  overruns 0  frame 0

        TX packets 0  bytes 0 (0.0 B)

        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

br-c35db444ec17: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500

        inet 172.18.0.1  netmask 255.255.0.0  broadcast 172.18.255.255

        inet6 fe80::42:97ff:fe8a:b5f  prefixlen 64  scopeid 0x20<link>

        ether 02:42:97:8a:0b:5f  txqueuelen 0  (Ethernet)

        RX packets 9  bytes 252 (252.0 B)

        RX errors 0  dropped 0  overruns 0  frame 0

        TX packets 115  bytes 12618 (12.3 KiB)

        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

docker0: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500

        inet 172.17.0.1  netmask 255.255.0.0  broadcast 172.17.255.255

        ether 02:42:0e:b4:47:5b  txqueuelen 0  (Ethernet)

        RX packets 0  bytes 0 (0.0 B)

        RX errors 0  dropped 0  overruns 0  frame 0

        TX packets 0  bytes 0 (0.0 B)

        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

将 ip 添加到信任区域

firewall-cmd  --zone=trusted --add-source=172.17.0.1/16 --permanent

firewall-cmd  --zone=trusted --add-source=172.18.0.1/16 --permanent

firewall-cmd  --zone=trusted --add-source=172.19.0.1/16 --permanent

firewall-cmd --reload