{"id":88582,"date":"2025-06-28T23:49:19","date_gmt":"2025-06-28T16:49:19","guid":{"rendered":"https:\/\/itviec.com\/blog\/?p=88582"},"modified":"2025-06-29T22:33:52","modified_gmt":"2025-06-29T15:33:52","slug":"docker-network-la-gi","status":"publish","type":"post","link":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/","title":{"rendered":"Docker Network l\u00e0 g\u00ec: C\u00e1ch t\u1ea1o, qu\u1ea3n l\u00fd, t\u1ed1i \u01b0u m\u1ea1ng Docker"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">N\u1ed9i dung b\u00e0i vi\u1ebft<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#Docker_Network_la_gi\" >Docker Network l\u00e0 g\u00ec?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#Cac_loai_Docker_Network_driver_pho_bien\" >C\u00e1c lo\u1ea1i Docker Network driver ph\u1ed5 bi\u1ebfn<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#Cach_tao_va_quan_ly_Docker_Network_hieu_qua\" >C\u00e1ch t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd Docker Network hi\u1ec7u qu\u1ea3<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#Cac_cach_bao_mat_va_toi_uu_hieu_suat_trong_Docker_Network\" >C\u00e1c c\u00e1ch b\u1ea3o m\u1eadt v\u00e0 t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t trong Docker Network<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#Nhung_diem_khac_nhau_giua_Docker_Network_va_Kubernetes_la_gi\" >Nh\u1eefng \u0111i\u1ec3m kh\u00e1c nhau gi\u1eefa Docker Network v\u00e0 Kubernetes l\u00e0 g\u00ec?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#Cac_cau_hoi_thuong_gap_ve_Docker_Network\" >C\u00e1c c\u00e2u h\u1ecfi th\u01b0\u1eddng g\u1eb7p v\u1ec1 Docker Network<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#Tong_ket_Docker_Network_la_gi\" >T\u1ed5ng k\u1ebft Docker Network l\u00e0 g\u00ec<\/a><\/li><\/ul><\/nav><\/div>\n\n<p><strong><em>Docker Network l\u00e0 ch\u00eca kh\u00f3a \u0111\u1ec3 c\u00e1c container c\u00f3 th\u1ec3 k\u1ebft n\u1ed1i v\u00e0 giao ti\u1ebfp hi\u1ec7u qu\u1ea3 trong m\u00f4i tr\u01b0\u1eddng \u1ea3o h\u00f3a. Vi\u1ec7c t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd Docker Network \u0111\u00fang c\u00e1ch s\u1ebd gi\u00fap b\u1ea1n x\u00e2y d\u1ef1ng h\u1ec7 th\u1ed1ng \u1ed5n \u0111\u1ecbnh, b\u1ea3o m\u1eadt v\u00e0 d\u1ec5 m\u1edf r\u1ed9ng. B\u00e0i vi\u1ebft n\u00e0y s\u1ebd cung c\u1ea5p h\u01b0\u1edbng d\u1eabn chi ti\u1ebft \u0111\u1ec3 b\u1ea1n hi\u1ec3u r\u00f5 Docker Network l\u00e0 g\u00ec, c\u00e1ch s\u1eed d\u1ee5ng Docker Network hi\u1ec7u qu\u1ea3 nh\u1ea5t.<\/em><\/strong><\/p>\n\n\n\n<p>\u0110\u1ecdc b\u00e0i vi\u1ebft sau \u0111\u1ec3 hi\u1ec3u r\u00f5:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Docker Network l\u00e0 g\u00ec<\/li>\n\n\n\n<li>C\u00e1c lo\u1ea1i Docker Network driver ph\u1ed5 bi\u1ebfn<\/li>\n\n\n\n<li>C\u00e1ch t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd Docker Network<\/li>\n\n\n\n<li>B\u1ea3o m\u1eadt v\u00e0 t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t trong Docker Network<\/li>\n\n\n\n<li>So s\u00e1nh Docker Network v\u1edbi Kubernetes Network<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-docker-network-la-gi\"><span class=\"ez-toc-section\" id=\"Docker_Network_la_gi\"><\/span><strong>Docker Network l\u00e0 g\u00ec?<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Docker Network l\u00e0 m\u1ed9t h\u1ec7 th\u1ed1ng m\u1ea1ng \u1ea3o \u0111\u01b0\u1ee3c <a href=\"https:\/\/itviec.com\/blog\/docker-la-gi\/\" target=\"_blank\" rel=\"noreferrer noopener\">Docker<\/a> thi\u1ebft k\u1ebf \u0111\u1ec3 cho ph\u00e9p c\u00e1c container giao ti\u1ebfp v\u1edbi nhau ho\u1eb7c v\u1edbi c\u00e1c d\u1ecbch v\u1ee5 b\u00ean ngo\u00e0i. M\u1ed7i container trong Docker ch\u1ea1y tr\u00ean m\u1ed9t l\u1edbp m\u1ea1ng ri\u00eang bi\u1ec7t, v\u00e0 nh\u1edd c\u00f3 Docker Network, ch\u00fang c\u00f3 th\u1ec3 chia s\u1ebb d\u1eef li\u1ec7u, g\u1eedi nh\u1eadn t\u00edn hi\u1ec7u ho\u1eb7c t\u01b0\u01a1ng t\u00e1c qua c\u00e1c c\u1ed5ng d\u1ecbch v\u1ee5 m\u1ed9t c\u00e1ch d\u1ec5 d\u00e0ng.<\/p>\n\n\n\n<p>Docker m\u1eb7c \u0111\u1ecbnh t\u1ea1o ra 3 network c\u01a1 b\u1ea3n khi c\u00e0i \u0111\u1eb7t: bridge (default), host, v\u00e0 none. Ngo\u00e0i ra, Docker c\u00f2n cung c\u1ea5p nhi\u1ec1u lo\u1ea1i network kh\u00e1c nh\u01b0 bridge, host, overlay, macvlan, gi\u00fap ng\u01b0\u1eddi d\u00f9ng linh ho\u1ea1t trong vi\u1ec7c thi\u1ebft l\u1eadp m\u00f4i tr\u01b0\u1eddng ph\u00f9 h\u1ee3p v\u1edbi t\u1eebng k\u1ecbch b\u1ea3n tri\u1ec3n khai.<\/p>\n\n\n\n<p>Docker Network cung c\u1ea5p t\u00ednh n\u0103ng network isolation (c\u00f4 l\u1eadp m\u1ea1ng), DNS resolution t\u1ef1 \u0111\u1ed9ng gi\u1eefa c\u00e1c container v\u00e0 IPAM (IP Address Management) t\u00edch h\u1ee3p. Trong c\u00e1c m\u00f4 h\u00ecnh tri\u1ec3n khai microservices, Kubernetes hay Docker Swarm, vi\u1ec7c c\u1ea5u h\u00ecnh Docker Network \u0111\u00fang c\u00e1ch l\u00e0 y\u1ebfu t\u1ed1 then ch\u1ed1t \u0111\u1ec3 duy tr\u00ec t\u00ednh kh\u1ea3 d\u1ee5ng v\u00e0 m\u1edf r\u1ed9ng c\u1ee7a to\u00e0n b\u1ed9 h\u1ea1 t\u1ea7ng.&nbsp;<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p><em>\u0110\u1ecdc th\u00eam: <strong><a href=\"https:\/\/itviec.com\/blog\/docker-container\/\" target=\"_blank\" rel=\"noreferrer noopener\">Docker Container l\u00e0 g\u00ec? C\u00e1ch s\u1eed d\u1ee5ng Docker Container hi\u1ec7u qu\u1ea3<\/a><\/strong><\/em><\/p>\n<\/blockquote>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-cac-lo\u1ea1i-docker-network-driver-ph\u1ed5-bi\u1ebfn\"><span class=\"ez-toc-section\" id=\"Cac_loai_Docker_Network_driver_pho_bien\"><\/span><strong>C\u00e1c lo\u1ea1i Docker Network driver ph\u1ed5 bi\u1ebfn<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>M\u1ed7i Docker Network \u0111\u01b0\u1ee3c v\u1eadn h\u00e0nh th\u00f4ng qua m\u1ed9t network driver \u2013 th\u00e0nh ph\u1ea7n \u0111\u00f3ng vai tr\u00f2 quy\u1ebft \u0111\u1ecbnh c\u00e1ch c\u00e1c container giao ti\u1ebfp v\u1edbi nhau v\u00e0 v\u1edbi b\u00ean ngo\u00e0i. M\u1ed7i lo\u1ea1i driver mang l\u1ea1i m\u1ed9t ki\u1ec3u c\u1ea5u tr\u00fac m\u1ea1ng kh\u00e1c nhau, ph\u00f9 h\u1ee3p v\u1edbi t\u1eebng m\u1ee5c \u0111\u00edch s\u1eed d\u1ee5ng trong ph\u00e1t tri\u1ec3n v\u00e0 tri\u1ec3n khai h\u1ec7 th\u1ed1ng.&nbsp;<\/p>\n\n\n\n<p>C\u00e1c lo\u1ea1i Docker Network driver ph\u1ed5 bi\u1ebfn bao g\u1ed3m:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Bridge (m\u1eb7c \u0111\u1ecbnh): Cho ph\u00e9p c\u00e1c container tr\u00ean c\u00f9ng m\u1ed9t host giao ti\u1ebfp v\u1edbi nhau qua m\u1ea1ng \u1ea3o.<\/li>\n\n\n\n<li>Host: Container d\u00f9ng chung network namespace v\u1edbi host, gi\u00fap gi\u1ea3m \u0111\u1ed9 tr\u1ec5 m\u1ea1ng nh\u01b0ng \u00edt t\u00ednh c\u00f4 l\u1eadp.<\/li>\n\n\n\n<li>Overlay: K\u1ebft n\u1ed1i c\u00e1c container gi\u1eefa nhi\u1ec1u host kh\u00e1c nhau, th\u01b0\u1eddng d\u00f9ng trong Docker Swarm ho\u1eb7c h\u1ec7 th\u1ed1ng ph\u00e2n t\u00e1n.<\/li>\n\n\n\n<li>Macvlan: G\u00e1n \u0111\u1ecba ch\u1ec9 MAC th\u1eadt cho container, gi\u00fap n\u00f3 xu\u1ea5t hi\u1ec7n nh\u01b0 m\u1ed9t thi\u1ebft b\u1ecb v\u1eadt l\u00fd tr\u00ean m\u1ea1ng.<\/li>\n\n\n\n<li>None: T\u1eaft to\u00e0n b\u1ed9 ch\u1ee9c n\u0103ng m\u1ea1ng, container ho\u00e0n to\u00e0n bi\u1ec7t l\u1eadp.<\/li>\n<\/ul>\n\n\n\n<p>Ngo\u00e0i ra, Docker c\u0169ng h\u1ed7 tr\u1ee3 t\u00edch h\u1ee3p driver t\u00f9y ch\u1ec9nh th\u00f4ng qua plugin system t\u1eeb b\u00ean th\u1ee9 ba. C\u00e1c plugin nh\u01b0 Calico ho\u1eb7c Weave Net cung c\u1ea5p c\u00e1c t\u00ednh n\u0103ng n\u00e2ng cao nh\u01b0 network policies, encryption v\u00e0 multi-cloud networking gi\u00fap m\u1edf r\u1ed9ng ch\u1ee9c n\u0103ng m\u1ea1ng c\u1ee7a Docker&nbsp;<\/p>\n\n\n\n<p>Vi\u1ec7c hi\u1ec3u v\u00e0 l\u1ef1a ch\u1ecdn \u0111\u00fang network driver kh\u00f4ng ch\u1ec9 gi\u00fap t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t giao ti\u1ebfp gi\u1eefa c\u00e1c container, m\u00e0 c\u00f2n \u0111\u1ea3m b\u1ea3o b\u1ea3o m\u1eadt, ki\u1ec3m so\u00e1t t\u00e0i nguy\u00ean v\u00e0 kh\u1ea3 n\u0103ng m\u1edf r\u1ed9ng c\u1ee7a h\u1ec7 th\u1ed1ng.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-cach-t\u1ea1o-va-qu\u1ea3n-ly-docker-network-hi\u1ec7u-qu\u1ea3\"><span class=\"ez-toc-section\" id=\"Cach_tao_va_quan_ly_Docker_Network_hieu_qua\"><\/span><strong>C\u00e1ch t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd Docker Network hi\u1ec7u qu\u1ea3<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Docker cung c\u1ea5p nhi\u1ec1u t\u00f9y ch\u1ecdn linh ho\u1ea1t th\u00f4ng qua d\u00f2ng l\u1ec7nh (CLI), cho ph\u00e9p b\u1ea1n thi\u1ebft l\u1eadp c\u1ea5u tr\u00fac m\u1ea1ng ph\u00f9 h\u1ee3p v\u1edbi t\u1eebng lo\u1ea1i \u1ee9ng d\u1ee5ng v\u00e0 m\u1ee5c ti\u00eau tri\u1ec3n khai.&nbsp;<\/p>\n\n\n\n<p>Trong m\u00f4i tr\u01b0\u1eddng production, vi\u1ec7c s\u1eed d\u1ee5ng <strong>user-defined network<\/strong> thay v\u00ec <strong>default bridge network<\/strong> \u0111\u01b0\u1ee3c khuy\u1ebfn kh\u00edch v\u00ec mang l\u1ea1i: Isolation t\u1ed1t h\u01a1n gi\u1eefa c\u00e1c container, t\u1ef1 \u0111\u1ed9ng ph\u00e2n gi\u1ea3i DNS v\u00e0 k\u1ebft n\u1ed1i linh ho\u1ea1t h\u01a1n.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-cach-t\u1ea1o-docker-network\"><strong>C\u00e1ch t\u1ea1o Docker Network<\/strong><\/h3>\n\n\n\n<p>B\u1ea1n c\u00f3 th\u1ec3 t\u1ea1o m\u1ed9t Docker network m\u1edbi b\u1eb1ng l\u1ec7nh:&nbsp;<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>docker network create --driver bridge my_custom_network<\/code><\/pre>\n\n\n\n<p>Trong \u0111\u00f3:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><code>--driver<\/code>: ch\u1ec9 \u0111\u1ecbnh lo\u1ea1i docker network driver (v\u00ed d\u1ee5: bridge, host, overlay\u2026)<\/li>\n\n\n\n<li><code>my_custom_network<\/code>: t\u00ean m\u1ea1ng do b\u1ea1n \u0111\u1eb7t<\/li>\n<\/ul>\n\n\n\n<p>Ngo\u00e0i ra, b\u1ea1n c\u00f3 th\u1ec3 th\u00eam c\u00e1c t\u00f9y ch\u1ecdn nh\u01b0 subnet, gateway ho\u1eb7c IP range \u0111\u1ec3 ki\u1ec3m so\u00e1t t\u1ed1t h\u01a1n c\u1ea5u h\u00ecnh m\u1ea1ng:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>docker network create \\\n\n\u00a0\u00a0--driver bridge \\\n\n\u00a0\u00a0--subnet 192.168.100.0\/24 \\\n\n\u00a0\u00a0--gateway 192.168.100.1 \\\n\n\u00a0\u00a0--ip-range 192.168.100.128\/25 \\\n\n\u00a0\u00a0--dns 8.8.8.8 \\\n\n\u00a0\u00a0--dns 8.8.4.4 \\\n\n\u00a0\u00a0--label environment=production \\\n\n\u00a0\u00a0--label project=myapp \\\n\n\u00a0\u00a0my_advanced_network<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-cach-qu\u1ea3n-ly-docker-network\"><strong>C\u00e1ch qu\u1ea3n l\u00fd Docker Network<\/strong><\/h3>\n\n\n\n<p>Docker cung c\u1ea5p c\u00e1c l\u1ec7nh \u0111\u01a1n gi\u1ea3n \u0111\u1ec3 theo d\u00f5i v\u00e0 qu\u1ea3n l\u00fd m\u1ea1ng:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Li\u1ec7t k\u00ea c\u00e1c network \u0111ang t\u1ed3n t\u1ea1i: <code>docker network ls<\/code><\/li>\n\n\n\n<li>Ki\u1ec3m tra chi ti\u1ebft m\u1ed9t m\u1ea1ng c\u1ee5 th\u1ec3: <code>docker network inspect my_custom_network<\/code><\/li>\n\n\n\n<li>G\u1eafn container v\u00e0o m\u1ed9t network: <code>docker network connect my_custom_network my_container<\/code><\/li>\n\n\n\n<li>G\u1ee1 container kh\u1ecfi network: <code>docker network disconnect my_custom_network my_container<\/code><\/li>\n\n\n\n<li>X\u00f3a network kh\u00f4ng d\u00f9ng: <code>docker network rm my_custom_network<\/code><\/li>\n<\/ul>\n\n\n\n<p>C\u00e1c l\u1ec7nh qu\u1ea3n l\u00fd n\u00e2ng cao:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># X\u00f3a t\u1ea5t c\u1ea3 networks kh\u00f4ng s\u1eed d\u1ee5ng\n\ndocker network prune\n\n# K\u1ebft n\u1ed1i container v\u1edbi IP t\u0129nh\n\ndocker network connect --ip 192.168.100.10 my_custom_network my_container\n\n# Ki\u1ec3m tra networks v\u1edbi filter\n\ndocker network ls --filter driver=bridge\n\ndocker network ls --filter label=environment=production<\/code><\/pre>\n\n\n\n<p>Vi\u1ec7c t\u1ed5 ch\u1ee9c v\u00e0 qu\u1ea3n l\u00fd Docker Network khoa h\u1ecdc kh\u00f4ng ch\u1ec9 gi\u00fap h\u1ec7 th\u1ed1ng container ho\u1ea1t \u0111\u1ed9ng \u1ed5n \u0111\u1ecbnh m\u00e0 c\u00f2n \u0111\u1ea3m b\u1ea3o b\u1ea3o m\u1eadt, gi\u1ea3m thi\u1ec3u l\u1ed7i k\u1ebft n\u1ed1i v\u00e0 d\u1ec5 d\u00e0ng m\u1edf r\u1ed9ng khi c\u1ea7n. V\u1edbi c\u00e1c d\u1ef1 \u00e1n microservices ho\u1eb7c m\u00f4i tr\u01b0\u1eddng s\u1ea3n xu\u1ea5t ph\u1ee9c t\u1ea1p, vi\u1ec7c thi\u1ebft k\u1ebf m\u1ea1ng t\u1eeb \u0111\u1ea7u l\u00e0 m\u1ed9t ph\u1ea7n quan tr\u1ecdng c\u1ee7a ki\u1ebfn tr\u00fac t\u1ed5ng th\u1ec3.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-cac-cach-b\u1ea3o-m\u1eadt-va-t\u1ed1i-\u01b0u-hi\u1ec7u-su\u1ea5t-trong-docker-network\"><span class=\"ez-toc-section\" id=\"Cac_cach_bao_mat_va_toi_uu_hieu_suat_trong_Docker_Network\"><\/span><strong>C\u00e1c c\u00e1ch b\u1ea3o m\u1eadt v\u00e0 t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t trong Docker Network<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u0110\u1ec3 \u0111\u1ea3m b\u1ea3o h\u1ec7 th\u1ed1ng container ho\u1ea1t \u0111\u1ed9ng \u1ed5n \u0111\u1ecbnh v\u00e0 an to\u00e0n, vi\u1ec7c b\u1ea3o m\u1eadt v\u00e0 t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t Docker Network l\u00e0 v\u00f4 c\u00f9ng quan tr\u1ecdng. M\u1ed9t m\u1ea1ng Docker \u0111\u01b0\u1ee3c c\u1ea5u h\u00ecnh t\u1ed1t kh\u00f4ng ch\u1ec9 gi\u00fap c\u1ea3i thi\u1ec7n t\u1ed1c \u0111\u1ed9 truy\u1ec1n d\u1eef li\u1ec7u m\u00e0 c\u00f2n b\u1ea3o v\u1ec7 c\u00e1c container tr\u00e1nh kh\u1ecfi c\u00e1c nguy c\u01a1 t\u1ea5n c\u00f4ng m\u1ea1ng. Trong m\u00f4i tr\u01b0\u1eddng production, network security v\u00e0 performance optimization ph\u1ea3i \u0111\u01b0\u1ee3c t\u00edch h\u1ee3p ngay t\u1eeb giai \u0111o\u1ea1n thi\u1ebft k\u1ebf ki\u1ebfn tr\u00fac.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-cac-cach-b\u1ea3o-m\u1eadt-docker-network-ph\u1ed5-bi\u1ebfn\"><strong>C\u00e1c c\u00e1ch b\u1ea3o m\u1eadt Docker Network ph\u1ed5 bi\u1ebfn<\/strong><\/h3>\n\n\n\n<p>Vi\u1ec7c b\u1ea3o m\u1eadt Docker Network gi\u00fap ng\u0103n ch\u1eb7n truy c\u1eadp tr\u00e1i ph\u00e9p v\u00e0 b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u khi container giao ti\u1ebfp v\u1edbi nhau ho\u1eb7c v\u1edbi b\u00ean ngo\u00e0i. M\u1ed9t s\u1ed1 c\u00e1ch b\u1ea3o m\u1eadt ph\u1ed5 bi\u1ebfn g\u1ed3m:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Ph\u00e2n t\u00e1ch m\u1ea1ng ri\u00eang bi\u1ec7t<\/strong>: T\u1ea1o nhi\u1ec1u m\u1ea1ng Docker ri\u00eang cho t\u1eebng nh\u00f3m container ho\u1eb7c d\u1ecbch v\u1ee5 \u0111\u1ec3 h\u1ea1n ch\u1ebf kh\u1ea3 n\u0103ng truy c\u1eadp ch\u00e9o kh\u00f4ng mong mu\u1ed1n.<\/li>\n\n\n\n<li><strong>S\u1eed d\u1ee5ng firewall v\u00e0 lu\u1eadt l\u1ecdc truy c\u1eadp:<\/strong> \u00c1p d\u1ee5ng iptables ho\u1eb7c c\u00e1c c\u00f4ng c\u1ee5 firewall kh\u00e1c \u0111\u1ec3 ki\u1ec3m so\u00e1t lu\u1ed3ng d\u1eef li\u1ec7u v\u00e0o ra gi\u1eefa c\u00e1c container v\u00e0 m\u1ea1ng ngo\u00e0i.<\/li>\n\n\n\n<li><strong>Gi\u1edbi h\u1ea1n truy c\u1eadp Internet:<\/strong> V\u1edbi nh\u1eefng container kh\u00f4ng c\u1ea7n truy c\u1eadp ra ngo\u00e0i, b\u1ea1n n\u00ean s\u1eed d\u1ee5ng m\u1ea1ng none ho\u1eb7c c\u1ea5u h\u00ecnh ch\u1eb7n outbound ph\u00f9 h\u1ee3p.<\/li>\n\n\n\n<li><strong>Gi\u00e1m s\u00e1t l\u01b0u l\u01b0\u1ee3ng m\u1ea1ng:<\/strong> D\u00f9ng c\u00e1c c\u00f4ng c\u1ee5 nh\u01b0 cAdvisor, Netdata \u0111\u1ec3 theo d\u00f5i v\u00e0 ph\u00e1t hi\u1ec7n c\u00e1c ho\u1ea1t \u0111\u1ed9ng b\u1ea5t th\u01b0\u1eddng tr\u00ean m\u1ea1ng Docker.<\/li>\n\n\n\n<li><strong>M\u00e3 h\u00f3a overlay network<\/strong>: Trong m\u00f4i tr\u01b0\u1eddng Docker Swarm ho\u1eb7c \u0111a host, b\u1eadt t\u00ednh n\u0103ng m\u00e3 h\u00f3a \u0111\u1ec3 b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u truy\u1ec1n t\u1ea3i gi\u1eefa c\u00e1c node.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-cac-cach-t\u1ed1i-\u01b0u-hi\u1ec7u-su\u1ea5t-docker-network\"><strong>C\u00e1c c\u00e1ch t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t Docker Network<\/strong><\/h3>\n\n\n\n<p>\u0110\u1ec3 m\u1ea1ng Docker v\u1eadn h\u00e0nh hi\u1ec7u qu\u1ea3, gi\u1ea3m \u0111\u1ed9 tr\u1ec5 v\u00e0 t\u1ed1i \u01b0u t\u00e0i nguy\u00ean, b\u1ea1n c\u1ea7n l\u01b0u \u00fd nh\u1eefng \u0111i\u1ec3m sau:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>L\u1ef1a ch\u1ecdn lo\u1ea1i m\u1ea1ng ph\u00f9 h\u1ee3p<\/strong>: S\u1eed d\u1ee5ng bridge cho c\u00e1c container tr\u00ean c\u00f9ng host, overlay cho m\u00f4i tr\u01b0\u1eddng \u0111a host, tr\u00e1nh d\u00f9ng host n\u1ebfu kh\u00f4ng th\u1ef1c s\u1ef1 c\u1ea7n thi\u1ebft \u0111\u1ec3 gi\u1eef t\u00ednh c\u00f4 l\u1eadp.<\/li>\n\n\n\n<li><strong>H\u1ea1n ch\u1ebf s\u1ed1 l\u01b0\u1ee3ng container tr\u00ean m\u1ed9t m\u1ea1ng<\/strong>: M\u1ea1ng c\u00f3 qu\u00e1 nhi\u1ec1u container c\u00f3 th\u1ec3 g\u00e2y t\u1eafc ngh\u1ebdn DNS n\u1ed9i b\u1ed9 v\u00e0 gi\u1ea3m hi\u1ec7u su\u1ea5t truy\u1ec1n th\u00f4ng.<\/li>\n\n\n\n<li><strong>T\u1eaft c\u00e1c t\u00ednh n\u0103ng kh\u00f4ng c\u1ea7n thi\u1ebft:<\/strong> V\u00f4 hi\u1ec7u h\u00f3a multicast ho\u1eb7c service discovery n\u1ebfu kh\u00f4ng d\u00f9ng \u0111\u1ec3 gi\u1ea3m t\u1ea3i cho h\u1ec7 th\u1ed1ng.<\/li>\n\n\n\n<li><strong>\u0110i\u1ec1u ch\u1ec9nh th\u00f4ng s\u1ed1 MTU<\/strong>: \u0110\u1ed3ng b\u1ed9 MTU gi\u1eefa c\u00e1c node gi\u00fap gi\u1ea3m ph\u00e2n m\u1ea3nh g\u00f3i tin, t\u0103ng t\u1ed1c \u0111\u1ed9 truy\u1ec1n d\u1eef li\u1ec7u trong m\u1ea1ng overlay.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-nh\u1eefng-di\u1ec3m-khac-nhau-gi\u1eefa-docker-network-va-kubernetes-la-gi\"><span class=\"ez-toc-section\" id=\"Nhung_diem_khac_nhau_giua_Docker_Network_va_Kubernetes_la_gi\"><\/span>Nh\u1eefng \u0111i\u1ec3m kh\u00e1c nhau gi\u1eefa Docker Network v\u00e0 Kubernetes l\u00e0 g\u00ec?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Docker v\u00e0 Kubernetes \u0111\u1ec1u l\u00e0 n\u1ec1n t\u1ea3ng qu\u1ea3n l\u00fd container ph\u1ed5 bi\u1ebfn, nh\u01b0ng h\u1ec7 th\u1ed1ng m\u1ea1ng c\u1ee7a ch\u00fang c\u00f3 nhi\u1ec1u \u0111i\u1ec3m kh\u00e1c bi\u1ec7t do m\u1ee5c \u0111\u00edch v\u00e0 quy m\u00f4 s\u1eed d\u1ee5ng kh\u00e1c nhau. Vi\u1ec7c hi\u1ec3u r\u00f5 s\u1ef1 kh\u00e1c bi\u1ec7t n\u00e0y gi\u00fap architects ch\u1ecdn \u0111\u00fang platform cho t\u1eebng use case c\u1ee5 th\u1ec3.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-m\u1ee5c-dich-va-quy-mo\"><strong>M\u1ee5c \u0111\u00edch v\u00e0 quy m\u00f4<\/strong><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Docker Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>Docker Network ch\u1ee7 y\u1ebfu ph\u1ee5c v\u1ee5 cho vi\u1ec7c k\u1ebft n\u1ed1i c\u00e1c container tr\u00ean c\u00f9ng m\u1ed9t host ho\u1eb7c qua Docker Swarm trong m\u00f4i tr\u01b0\u1eddng cluster v\u1eeba v\u00e0 nh\u1ecf (th\u01b0\u1eddng d\u01b0\u1edbi 100 nodes). N\u00f3 t\u1eadp trung v\u00e0o vi\u1ec7c \u0111\u01a1n gi\u1ea3n h\u00f3a vi\u1ec7c t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd m\u1ea1ng \u1ea3o cho container, ph\u00f9 h\u1ee3p v\u1edbi \u1ee9ng d\u1ee5ng nh\u1ecf ho\u1eb7c m\u00f4i tr\u01b0\u1eddng ph\u00e1t tri\u1ec3n. Docker Swarm mode cung c\u1ea5p built-in orchestration v\u1edbi service discovery v\u00e0 load balancing (c\u00e2n b\u1eb1ng t\u1ea3i) c\u01a1 b\u1ea3n.&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Kubernetes Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>Kubernetes network \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf cho c\u00e1c m\u00f4i tr\u01b0\u1eddng \u0111a node, c\u00f3 th\u1ec3 m\u1edf r\u1ed9ng \u0111\u1ebfn h\u00e0ng tr\u0103m ho\u1eb7c h\u00e0ng ng\u00e0n node v\u00e0 Pod v\u1edbi kh\u1ea3 n\u0103ng qu\u1ea3n l\u00fd h\u00e0ng tri\u1ec7u container. N\u00f3 \u0111\u1ea3m b\u1ea3o r\u1eb1ng m\u1ed7i Pod c\u00f3 m\u1ed9t \u0111\u1ecba ch\u1ec9 IP ri\u00eang v\u00e0 c\u00e1c Pod c\u00f3 th\u1ec3 giao ti\u1ebfp tr\u1ef1c ti\u1ebfp v\u1edbi nhau m\u00e0 kh\u00f4ng c\u1ea7n NAT, h\u1ed7 tr\u1ee3 t\u1ed1t cho c\u00e1c \u1ee9ng d\u1ee5ng microservices ph\u1ee9c t\u1ea1p. M\u00f4 h\u00ecnh Kubernetes network tu\u00e2n theo nguy\u00ean l\u00fd &#8220;flat network&#8221;, ngh\u0129a l\u00e0 m\u1ecdi Pod c\u00f3 th\u1ec3 giao ti\u1ebfp v\u1edbi c\u00e1c Pod kh\u00e1c.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-ki\u1ebfn-truc-va-cong-ngh\u1ec7\"><strong>Ki\u1ebfn tr\u00fac v\u00e0 c\u00f4ng ngh\u1ec7<\/strong><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Docker Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>Docker cung c\u1ea5p c\u00e1c lo\u1ea1i network driver nh\u01b0 bridge, host, overlay, macvlan. M\u1ea1ng Docker \u0111\u01a1n gi\u1ea3n, d\u1ec5 c\u1ea5u h\u00ecnh v\u00e0 qu\u1ea3n l\u00fd qua CLI, ph\u00f9 h\u1ee3p cho m\u00f4i tr\u01b0\u1eddng \u0111\u01a1n host ho\u1eb7c Docker Swarm. Docker Swarm s\u1eed d\u1ee5ng overlay network t\u00edch h\u1ee3p s\u1eb5n v\u1edbi c\u00f4ng ngh\u1ec7 \u0111\u00f3ng g\u00f3i VXLAN \u0111\u1ec3 h\u1ed7 tr\u1ee3 giao ti\u1ebfp \u0111a host.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Kubernetes Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>Kubernetes s\u1eed d\u1ee5ng m\u00f4 h\u00ecnh m\u1ea1ng ph\u1ee9c t\u1ea1p h\u01a1n, d\u1ef1a tr\u00ean c\u00e1c plugin chu\u1ea9n CNI (Container Network Interface) nh\u01b0 Calico, Flannel, Weave. Nh\u1eefng plugin n\u00e0y h\u1ed7 tr\u1ee3 c\u00e1c t\u00ednh n\u0103ng n\u00e2ng cao nh\u01b0 ch\u00ednh s\u00e1ch m\u1ea1ng (Network Policies), b\u1ea3o m\u1eadt, c\u00e2n b\u1eb1ng t\u1ea3i v\u00e0 m\u1ea1ng overlay. Kubernetes c\u0169ng t\u00edch h\u1ee3p s\u1eb5n service abstraction v\u1edbi kube-proxy x\u1eed l\u00fd c\u00e2n b\u1eb1ng t\u1ea3i.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-b\u1ea3o-m\u1eadt\"><strong>B\u1ea3o m\u1eadt<\/strong><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Docker Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>C\u00f3 h\u1ed7 tr\u1ee3 ph\u00e2n t\u00e1ch m\u1ea1ng v\u00e0 m\u00e3 h\u00f3a overlay network, tuy nhi\u00ean th\u01b0\u1eddng c\u1ea7n k\u1ebft h\u1ee3p v\u1edbi c\u00e1c c\u00f4ng c\u1ee5 b\u00ean ngo\u00e0i (firewall, iptables) \u0111\u1ec3 n\u00e2ng cao b\u1ea3o m\u1eadt.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Kubernetes Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>T\u00edch h\u1ee3p s\u1eb5n ch\u00ednh s\u00e1ch m\u1ea1ng gi\u00fap ki\u1ec3m so\u00e1t lu\u1ed3ng d\u1eef li\u1ec7u gi\u1eefa c\u00e1c Pod, h\u1ed7 tr\u1ee3 m\u00e3 h\u00f3a v\u00e0 c\u01a1 ch\u1ebf b\u1ea3o m\u1eadt n\u00e2ng cao, ph\u00f9 h\u1ee3p v\u1edbi m\u00f4i tr\u01b0\u1eddng \u0111a ng\u01b0\u1eddi d\u00f9ng v\u00e0 quy m\u00f4 l\u1edbn.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-qu\u1ea3n-ly-va-v\u1eadn-hanh\"><strong>Qu\u1ea3n l\u00fd v\u00e0 v\u1eadn h\u00e0nh<\/strong><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Docker Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>Qu\u1ea3n l\u00fd qua Docker CLI v\u00e0 Docker Compose, d\u1ec5 d\u00e0ng t\u1ea1o, g\u1eafn v\u00e0 xo\u00e1 m\u1ea1ng v\u1edbi l\u1ec7nh \u0111\u01a1n gi\u1ea3n, th\u00edch h\u1ee3p cho h\u1ec7 th\u1ed1ng nh\u1ecf, m\u00f4i tr\u01b0\u1eddng th\u1eed nghi\u1ec7m ho\u1eb7c tri\u1ec3n khai nhanh. Docker Swarm c\u00f3 web UI v\u00e0 REST API, nh\u01b0ng c\u00e1c c\u00f4ng c\u1ee5 trong h\u1ec7 sinh th\u00e1i h\u1ea1n ch\u1ebf h\u01a1n.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Kubernetes Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>Qu\u1ea3n l\u00fd qua Kubernetes API, ph\u1ee9c t\u1ea1p h\u01a1n nh\u01b0ng r\u1ea5t linh ho\u1ea1t v\u00e0 t\u1ef1 \u0111\u1ed9ng h\u00f3a, ph\u00f9 h\u1ee3p v\u1edbi m\u00f4i tr\u01b0\u1eddng s\u1ea3n xu\u1ea5t quy m\u00f4 l\u1edbn v\u00e0 tri\u1ec3n khai \u0111a d\u1ecbch v\u1ee5.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-tinh-m\u1edf-r\u1ed9ng\"><strong>T\u00ednh m\u1edf r\u1ed9ng<\/strong><\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Docker Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>H\u1ea1n ch\u1ebf trong vi\u1ec7c m\u1edf r\u1ed9ng, ph\u00f9 h\u1ee3p v\u1edbi cluster nh\u1ecf ho\u1eb7c single-host.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Kubernetes Network:<\/strong><\/li>\n<\/ul>\n\n\n\n<p>Thi\u1ebft k\u1ebf \u0111\u1ec3 m\u1edf r\u1ed9ng linh ho\u1ea1t, h\u1ed7 tr\u1ee3 h\u00e0ng ng\u00e0n node v\u00e0 Pod v\u1edbi kh\u1ea3 n\u0103ng c\u00e2n b\u1eb1ng t\u1ea3i v\u00e0 t\u1ed1i \u01b0u m\u1ea1ng cao. Kubernetes h\u1ed7 tr\u1ee3 advanced scheduling, t\u1ef1 \u0111\u1ed9ng m\u1edf r\u1ed9ng (auto-scaling) bao g\u1ed3m HPA &#8211; Horizontal Pod Autoscaler, VPA &#8211; Vertical Pod Autoscaler v\u00e0 k\u1ebft n\u1ed1i nhi\u1ec1u c\u1ee5m.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-b\u1ea3ng-t\u1ed5ng-h\u1ee3p-so-sanh-docker-network-va-kubernetes-network\"><strong>B\u1ea3ng t\u1ed5ng h\u1ee3p so s\u00e1nh Docker Network v\u00e0 Kubernetes Network<\/strong><\/h3>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><td><strong>Ti\u00eau ch\u00ed<\/strong><\/td><td><strong>Docker Network<\/strong><\/td><td><strong>Kubernetes Network<\/strong><\/td><\/tr><tr><td>M\u1ee5c \u0111\u00edch<\/td><td>K\u1ebft n\u1ed1i container tr\u00ean \u0111\u01a1n host ho\u1eb7c Swarm v\u1eeba v\u00e0&nbsp; nh\u1ecf<\/td><td>M\u1ea1ng \u0111a node, h\u1ed7 tr\u1ee3 microservices quy m\u00f4 l\u1edbn<\/td><\/tr><tr><td>Ki\u1ebfn tr\u00fac<\/td><td>Driver: bridge, host, overlay, macvlan, ipvlan<\/td><td>Plugin CNI: Calico, Flannel, Weave, Cilium, Cloud CNIs<\/td><\/tr><tr><td>B\u1ea3o m\u1eadt<\/td><td>Ph\u00e2n t\u00e1ch m\u1ea1ng, m\u00e3 h\u00f3a overlay, c\u1ea7n firewall b\u00ean ngo\u00e0i<\/td><td>Ch\u00ednh s\u00e1ch m\u1ea1ng, m\u00e3 h\u00f3a, b\u1ea3o m\u1eadt n\u00e2ng cao<\/td><\/tr><tr><td>Qu\u1ea3n l\u00fd<\/td><td>Docker CLI v\u00e0 Composer \u0111\u01a1n gi\u1ea3n<\/td><td>Kubernetes API ph\u1ee9c t\u1ea1p, t\u1ef1 \u0111\u1ed9ng h\u00f3a<\/td><\/tr><tr><td>Quy m\u00f4 m\u1edf r\u1ed9ng<\/td><td>Ph\u00f9 h\u1ee3p quy m\u00f4 nh\u1ecf \u0111\u1ebfn trung b\u00ecnh<\/td><td>H\u1ed7 tr\u1ee3 m\u1edf r\u1ed9ng quy m\u00f4 l\u1edbn<\/td><\/tr><tr><td>Giao ti\u1ebfp container<\/td><td>Qua m\u1ea1ng \u1ea3o v\u1edbi NAT ho\u1eb7c overlay<\/td><td>M\u1ed7i Pod c\u00f3 IP ri\u00eang, giao ti\u1ebfp tr\u1ef1c ti\u1ebfp<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-cac-cau-h\u1ecfi-th\u01b0\u1eddng-g\u1eb7p-v\u1ec1-docker-network\"><span class=\"ez-toc-section\" id=\"Cac_cau_hoi_thuong_gap_ve_Docker_Network\"><\/span><strong>C\u00e1c c\u00e2u h\u1ecfi th\u01b0\u1eddng g\u1eb7p v\u1ec1 Docker Network<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-docker-network-khac-gi-v\u1edbi-m\u1ea1ng-v\u1eadt-ly\"><strong>Docker Network kh\u00e1c g\u00ec v\u1edbi m\u1ea1ng v\u1eadt l\u00fd?<\/strong><\/h3>\n\n\n\n<p>Docker Network l\u00e0 m\u1ea1ng \u1ea3o \u0111\u01b0\u1ee3c Docker t\u1ea1o ra \u0111\u1ec3 k\u1ebft n\u1ed1i c\u00e1c container v\u1edbi nhau ho\u1eb7c v\u1edbi h\u1ec7 th\u1ed1ng b\u00ean ngo\u00e0i m\u00e0 kh\u00f4ng c\u1ea7n s\u1eed d\u1ee5ng h\u1ea1 t\u1ea7ng v\u1eadt l\u00fd th\u1ef1c. Kh\u00e1c v\u1edbi m\u1ea1ng v\u1eadt l\u00fd, Docker Network ho\u1ea1t \u0111\u1ed9ng ho\u00e0n to\u00e0n trong m\u00f4i tr\u01b0\u1eddng \u1ea3o h\u00f3a v\u00e0 c\u00f3 th\u1ec3 c\u1ea5u h\u00ecnh linh ho\u1ea1t theo nhu c\u1ea7u t\u1eebng \u1ee9ng d\u1ee5ng.&nbsp;<\/p>\n\n\n\n<p>Docker network s\u1eed d\u1ee5ng m\u00f4 h\u00ecnh <strong>m\u1ea1ng \u0111\u1ecbnh ngh\u0129a b\u1eb1ng ph\u1ea7n m\u1ec1m<\/strong> (Software-Defined Networking \u2013 SDN), k\u1ebft h\u1ee3p v\u1edbi c\u00e1c th\u00e0nh ph\u1ea7n nh\u01b0 virtual switches, bridges, v\u00e0 network namespaces \u0111\u1ec3 t\u1ea1o ra c\u00e1c m\u00f4i tr\u01b0\u1eddng m\u1ea1ng t\u00e1ch bi\u1ec7t. Nh\u1edd \u0111\u00f3, Docker Network gi\u00fap m\u00f4 ph\u1ecfng, t\u00e1ch bi\u1ec7t v\u00e0 b\u1ea3o m\u1eadt m\u00f4i tr\u01b0\u1eddng m\u1ea1ng m\u00e0 kh\u00f4ng c\u1ea7n thay \u0111\u1ed5i ph\u1ea7n c\u1ee9ng. Docker Network cung c\u1ea5p network abstraction layer cho ph\u00e9p developer t\u1eadp trung v\u00e0o logic \u1ee9ng d\u1ee5ng thay v\u00ec ph\u1ea3i x\u1eed l\u00fd c\u00e1c chi ti\u1ebft h\u1ea1 t\u1ea7ng m\u1ea1ng b\u00ean d\u01b0\u1edbi.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-co-th\u1ec3-k\u1ebft-n\u1ed1i-docker-container-v\u1edbi-m\u1ea1ng-n\u1ed9i-b\u1ed9-khong\"><strong>C\u00f3 th\u1ec3 k\u1ebft n\u1ed1i Docker container v\u1edbi m\u1ea1ng n\u1ed9i b\u1ed9 kh\u00f4ng?<\/strong><\/h3>\n\n\n\n<p>C\u00f3, b\u1ea1n ho\u00e0n to\u00e0n c\u00f3 th\u1ec3 k\u1ebft n\u1ed1i Docker container v\u1edbi m\u1ea1ng n\u1ed9i b\u1ed9 th\u00f4ng qua c\u1ea5u h\u00ecnh Docker Network. B\u1eb1ng c\u00e1ch s\u1eed d\u1ee5ng t\u00f9y ch\u1ecdn <strong><code>--network=host<\/code><\/strong> ho\u1eb7c t\u1ea1o m\u1ed9t network bridge t\u00f9y ch\u1ec9nh, container c\u00f3 th\u1ec3 giao ti\u1ebfp tr\u1ef1c ti\u1ebfp v\u1edbi thi\u1ebft b\u1ecb trong m\u1ea1ng LAN.<\/p>\n\n\n\n<p>Vi\u1ec7c c\u1ea5u h\u00ecnh \u0111\u00fang Docker Network gi\u00fap container d\u1ec5 d\u00e0ng truy c\u1eadp c\u00e1c d\u1ecbch v\u1ee5 n\u1ed9i b\u1ed9 nh\u01b0 database, m\u00e1y in, ho\u1eb7c server n\u1ed9i b\u1ed9.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-docker-network-\u1ea3nh-h\u01b0\u1edfng-d\u1ebfn-hi\u1ec7u-su\u1ea5t-container-nh\u01b0-th\u1ebf-nao\"><strong>Docker Network \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn hi\u1ec7u su\u1ea5t container nh\u01b0 th\u1ebf n\u00e0o?<\/strong><\/h3>\n\n\n\n<p>Docker Network c\u00f3 th\u1ec3 \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn hi\u1ec7u su\u1ea5t container t\u00f9y thu\u1ed9c v\u00e0o lo\u1ea1i network driver \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng. V\u00ed d\u1ee5, driver bridge v\u00e0 overlay c\u00f3 th\u1ec3 g\u00e2y \u0111\u1ed9 tr\u1ec5 cao h\u01a1n so v\u1edbi host v\u00ec ph\u1ea3i x\u1eed l\u00fd th\u00eam l\u1edbp m\u1ea1ng \u1ea3o. Do \u0111\u00f3, vi\u1ec7c l\u1ef1a ch\u1ecdn c\u1ea5u h\u00ecnh Docker Network ph\u00f9 h\u1ee3p s\u1ebd gi\u00fap t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t truy\u1ec1n t\u1ea3i d\u1eef li\u1ec7u gi\u1eefa c\u00e1c container v\u00e0 d\u1ecbch v\u1ee5 b\u00ean ngo\u00e0i.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-t\u1ed5ng-k\u1ebft-docker-network-la-gi\"><span class=\"ez-toc-section\" id=\"Tong_ket_Docker_Network_la_gi\"><\/span><strong>T\u1ed5ng k\u1ebft<\/strong> Docker Network l\u00e0 g\u00ec<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>T\u00f3m l\u1ea1i, vai tr\u00f2 c\u1ee7a Docker Network l\u00e0 g\u00ec? Docker Network \u0111\u00f3ng vai tr\u00f2 quan tr\u1ecdng trong vi\u1ec7c k\u1ebft n\u1ed1i, b\u1ea3o m\u1eadt v\u00e0 t\u1ed1i \u01b0u h\u00f3a hi\u1ec7u su\u1ea5t giao ti\u1ebfp gi\u1eefa c\u00e1c container. Vi\u1ec7c hi\u1ec3u r\u00f5 c\u00e1c lo\u1ea1i m\u1ea1ng, c\u00e1ch c\u1ea5u h\u00ecnh, qu\u1ea3n l\u00fd v\u00e0 so s\u00e1nh v\u1edbi nh\u1eefng m\u00f4 h\u00ecnh m\u1ea1ng kh\u00e1c nh\u01b0 Kubernetes s\u1ebd gi\u00fap b\u1ea1n thi\u1ebft k\u1ebf h\u1ec7 th\u1ed1ng container hi\u1ec7u qu\u1ea3 v\u00e0 linh ho\u1ea1t h\u01a1n. D\u00f9 tri\u1ec3n khai \u1edf m\u00f4i tr\u01b0\u1eddng nh\u1ecf hay m\u1edf r\u1ed9ng \u1edf quy m\u00f4 l\u1edbn, vi\u1ec7c s\u1eed d\u1ee5ng Docker Network \u0111\u00fang c\u00e1ch s\u1ebd l\u00e0 n\u1ec1n t\u1ea3ng v\u1eefng ch\u1eafc cho m\u1ed9t h\u1ea1 t\u1ea7ng container \u1ed5n \u0111\u1ecbnh v\u00e0 an to\u00e0n.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Docker Network l\u00e0 ch\u00eca kh\u00f3a \u0111\u1ec3 c\u00e1c container c\u00f3 th\u1ec3 k\u1ebft n\u1ed1i v\u00e0 giao ti\u1ebfp hi\u1ec7u qu\u1ea3 trong m\u00f4i tr\u01b0\u1eddng \u1ea3o h\u00f3a. Vi\u1ec7c t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd Docker Network \u0111\u00fang c\u00e1ch s\u1ebd gi\u00fap b\u1ea1n x\u00e2y d\u1ef1ng h\u1ec7 th\u1ed1ng \u1ed5n \u0111\u1ecbnh, b\u1ea3o m\u1eadt v\u00e0 d\u1ec5 m\u1edf r\u1ed9ng. B\u00e0i vi\u1ebft n\u00e0y s\u1ebd cung c\u1ea5p h\u01b0\u1edbng d\u1eabn chi [&hellip;]<\/p>\n","protected":false},"author":214,"featured_media":88617,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_gspb_post_css":"","footnotes":""},"categories":[109],"tags":[],"class_list":["post-88582","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-chuyen-mon-it"],"blocksy_meta":[],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v26.8 (Yoast SEO v27.7) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Docker Network l\u00e0 g\u00ec: C\u00e1ch t\u1ea1o, qu\u1ea3n l\u00fd, t\u1ed1i \u01b0u m\u1ea1ng Docker - ITviec Blog<\/title>\n<meta name=\"description\" content=\"Hi\u1ec3u r\u00f5 Docker Network l\u00e0 g\u00ec, n\u1eafm v\u1eefng c\u00e1ch s\u1eed d\u1ee5ng t\u1eeb t\u1ea1o, qu\u1ea3n l\u00fd, b\u1ea3o m\u1eadt, t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t \u0111\u1ebfn so s\u00e1nh gi\u1eefa Docker network v\u00e0 Kubernetes.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/\" \/>\n<meta property=\"og:locale\" content=\"vi_VN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Docker Network l\u00e0 g\u00ec: C\u00e1ch t\u1ea1o, qu\u1ea3n l\u00fd, t\u1ed1i \u01b0u m\u1ea1ng Docker\" \/>\n<meta property=\"og:description\" content=\"Docker Network l\u00e0 ch\u00eca kh\u00f3a \u0111\u1ec3 c\u00e1c container c\u00f3 th\u1ec3 k\u1ebft n\u1ed1i v\u00e0 giao ti\u1ebfp hi\u1ec7u qu\u1ea3 trong m\u00f4i tr\u01b0\u1eddng \u1ea3o h\u00f3a. Vi\u1ec7c t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd Docker Network \u0111\u00fang c\u00e1ch s\u1ebd\" \/>\n<meta property=\"og:url\" content=\"https:\/\/itviec.com\/blog\/docker-network-la-gi\/\" \/>\n<meta property=\"og:site_name\" content=\"ITviec Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/ITviec\" \/>\n<meta property=\"article:published_time\" content=\"2025-06-28T16:49:19+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-29T15:33:52+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2025\/06\/docker-network-la-gi-vippro-scaled.png\" \/>\n\t<meta property=\"og:image:width\" content=\"2560\" \/>\n\t<meta property=\"og:image:height\" content=\"1347\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Hi\u1ebfu Phan\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@ITviec\" \/>\n<meta name=\"twitter:site\" content=\"@ITviec\" \/>\n<meta name=\"twitter:label1\" content=\"\u0110\u01b0\u1ee3c vi\u1ebft b\u1edfi\" \/>\n\t<meta name=\"twitter:data1\" content=\"Hi\u1ebfu Phan\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u01af\u1edbc t\u00ednh th\u1eddi gian \u0111\u1ecdc\" \/>\n\t<meta name=\"twitter:data2\" content=\"14 ph\u00fat\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Docker Network l\u00e0 g\u00ec: C\u00e1ch t\u1ea1o, qu\u1ea3n l\u00fd, t\u1ed1i \u01b0u m\u1ea1ng Docker - ITviec Blog","description":"Hi\u1ec3u r\u00f5 Docker Network l\u00e0 g\u00ec, n\u1eafm v\u1eefng c\u00e1ch s\u1eed d\u1ee5ng t\u1eeb t\u1ea1o, qu\u1ea3n l\u00fd, b\u1ea3o m\u1eadt, t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t \u0111\u1ebfn so s\u00e1nh gi\u1eefa Docker network v\u00e0 Kubernetes.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/","og_locale":"vi_VN","og_type":"article","og_title":"Docker Network l\u00e0 g\u00ec: C\u00e1ch t\u1ea1o, qu\u1ea3n l\u00fd, t\u1ed1i \u01b0u m\u1ea1ng Docker","og_description":"Docker Network l\u00e0 ch\u00eca kh\u00f3a \u0111\u1ec3 c\u00e1c container c\u00f3 th\u1ec3 k\u1ebft n\u1ed1i v\u00e0 giao ti\u1ebfp hi\u1ec7u qu\u1ea3 trong m\u00f4i tr\u01b0\u1eddng \u1ea3o h\u00f3a. Vi\u1ec7c t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd Docker Network \u0111\u00fang c\u00e1ch s\u1ebd","og_url":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/","og_site_name":"ITviec Blog","article_publisher":"https:\/\/www.facebook.com\/ITviec","article_published_time":"2025-06-28T16:49:19+00:00","article_modified_time":"2025-06-29T15:33:52+00:00","og_image":[{"width":2560,"height":1347,"url":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2025\/06\/docker-network-la-gi-vippro-scaled.png","type":"image\/png"}],"author":"Hi\u1ebfu Phan","twitter_card":"summary_large_image","twitter_creator":"@ITviec","twitter_site":"@ITviec","twitter_misc":{"\u0110\u01b0\u1ee3c vi\u1ebft b\u1edfi":"Hi\u1ebfu Phan","\u01af\u1edbc t\u00ednh th\u1eddi gian \u0111\u1ecdc":"14 ph\u00fat"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#article","isPartOf":{"@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/"},"author":{"name":"Hi\u1ebfu Phan","@id":"https:\/\/itviec.com\/blog\/#\/schema\/person\/d9f4dfc3237d95eb1549e5adb2ede904"},"headline":"Docker Network l\u00e0 g\u00ec: C\u00e1ch t\u1ea1o, qu\u1ea3n l\u00fd, t\u1ed1i \u01b0u m\u1ea1ng Docker","datePublished":"2025-06-28T16:49:19+00:00","dateModified":"2025-06-29T15:33:52+00:00","mainEntityOfPage":{"@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/"},"wordCount":3600,"publisher":{"@id":"https:\/\/itviec.com\/blog\/#organization"},"image":{"@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#primaryimage"},"thumbnailUrl":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2025\/06\/docker-network-la-gi-vippro-scaled.png","articleSection":["Chuy\u00ean m\u00f4n IT"],"inLanguage":"vi"},{"@type":"WebPage","@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/","url":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/","name":"Docker Network l\u00e0 g\u00ec: C\u00e1ch t\u1ea1o, qu\u1ea3n l\u00fd, t\u1ed1i \u01b0u m\u1ea1ng Docker - ITviec Blog","isPartOf":{"@id":"https:\/\/itviec.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#primaryimage"},"image":{"@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#primaryimage"},"thumbnailUrl":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2025\/06\/docker-network-la-gi-vippro-scaled.png","datePublished":"2025-06-28T16:49:19+00:00","dateModified":"2025-06-29T15:33:52+00:00","description":"Hi\u1ec3u r\u00f5 Docker Network l\u00e0 g\u00ec, n\u1eafm v\u1eefng c\u00e1ch s\u1eed d\u1ee5ng t\u1eeb t\u1ea1o, qu\u1ea3n l\u00fd, b\u1ea3o m\u1eadt, t\u1ed1i \u01b0u hi\u1ec7u su\u1ea5t \u0111\u1ebfn so s\u00e1nh gi\u1eefa Docker network v\u00e0 Kubernetes.","breadcrumb":{"@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#breadcrumb"},"inLanguage":"vi","potentialAction":[{"@type":"ReadAction","target":["https:\/\/itviec.com\/blog\/docker-network-la-gi\/"]}]},{"@type":"ImageObject","inLanguage":"vi","@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#primaryimage","url":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2025\/06\/docker-network-la-gi-vippro-scaled.png","contentUrl":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2025\/06\/docker-network-la-gi-vippro-scaled.png","width":2560,"height":1347,"caption":"docker network l\u00e0 g\u00ec - itviec blog"},{"@type":"BreadcrumbList","@id":"https:\/\/itviec.com\/blog\/docker-network-la-gi\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Chuy\u00ean m\u00f4n IT","item":"https:\/\/itviec.com\/blog\/chuyen-mon-it\/"},{"@type":"ListItem","position":2,"name":"Docker Network l\u00e0 g\u00ec: C\u00e1ch t\u1ea1o, qu\u1ea3n l\u00fd, t\u1ed1i \u01b0u m\u1ea1ng Docker"}]},{"@type":"WebSite","@id":"https:\/\/itviec.com\/blog\/#website","url":"https:\/\/itviec.com\/blog\/","name":"ITviec Blog","description":"IT Jobs &amp; People in Vietnam","publisher":{"@id":"https:\/\/itviec.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/itviec.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"vi"},{"@type":"Organization","@id":"https:\/\/itviec.com\/blog\/#organization","name":"ITviec","url":"https:\/\/itviec.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"vi","@id":"https:\/\/itviec.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2018\/12\/itviec-black-square-facebook.png","contentUrl":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2018\/12\/itviec-black-square-facebook.png","width":1800,"height":1800,"caption":"ITviec"},"image":{"@id":"https:\/\/itviec.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/ITviec","https:\/\/x.com\/ITviec","https:\/\/www.linkedin.com\/company\/itviec","https:\/\/www.youtube.com\/channel\/UCYthAQ3bcGr57M_ag5gHDvQ"]},{"@type":"Person","@id":"https:\/\/itviec.com\/blog\/#\/schema\/person\/d9f4dfc3237d95eb1549e5adb2ede904","name":"Hi\u1ebfu Phan","image":{"@type":"ImageObject","inLanguage":"vi","@id":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2024\/03\/phan-trung-hieu-author-e1709881921227-100x100.jpg","url":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2024\/03\/phan-trung-hieu-author-e1709881921227-100x100.jpg","contentUrl":"https:\/\/itviec.com\/blog\/wp-content\/uploads\/2024\/03\/phan-trung-hieu-author-e1709881921227-100x100.jpg","caption":"Hi\u1ebfu Phan"},"url":"https:\/\/itviec.com\/blog\/author\/hieu-phan\/"}]}},"_links":{"self":[{"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/posts\/88582","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/users\/214"}],"replies":[{"embeddable":true,"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/comments?post=88582"}],"version-history":[{"count":3,"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/posts\/88582\/revisions"}],"predecessor-version":[{"id":88621,"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/posts\/88582\/revisions\/88621"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/media\/88617"}],"wp:attachment":[{"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/media?parent=88582"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/categories?post=88582"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/itviec.com\/blog\/wp-json\/wp\/v2\/tags?post=88582"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}