Bridge Networking

bridge or NAT on Windows

aka docker0

But each Bridge is isolated unless we map ports to the host.

Overlay Networking

Works on different networks.

docker network create

Control plane encrypted out of the box.

MACVLAN

Lets you have an IP / Mac address on the network. But must allow promiscuous mode – which is disabled in cloud.

Example of an overlay network

Assuming we’ve got a swarm set up (see