Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

"Ports are not available" for dapr_scheduler in Windows using Docker #1464

Closed
boclifton-MSFT opened this issue Nov 13, 2024 · 7 comments · Fixed by dapr/docs#4602
Closed

"Ports are not available" for dapr_scheduler in Windows using Docker #1464

boclifton-MSFT opened this issue Nov 13, 2024 · 7 comments · Fixed by dapr/docs#4602
Labels
kind/bug Something isn't working

Comments

@boclifton-MSFT
Copy link

boclifton-MSFT commented Nov 13, 2024
edited
Loading

Expected Behavior

Scheduler container starts as expected.

Actual Behavior

dapr init gives a Docker error:

PS C:\Users\boclifton> dapr init
Making the jump to hyperspace...
Container images will be pulled from Docker Hub
Installing runtime version 1.14.4
Downloading binaries and setting up components...
docker: Error response from daemon: Ports are not available: exposing port TCP 0.0.0.0:52379 -> 0.0.0.0:0: listen tcp4 0.0.0.0:52379: bind: An attempt was made to access a socket in a way forbidden by its access permissions.

Docker Desktop reports this error: (HTTP code 500) server error - Ports are not available: exposing port TCP 0.0.0.0:52379 -> 0.0.0.0:0: listen tcp4 0.0.0.0:52379: bind: An attempt was made to access a socket in a way forbidden by its access permissions.

Steps to Reproduce the Problem

Started from a fresh installation and followed the instructions in Initialize Dapr in your local environment.

Release Note

RELEASE NOTE:
FIX: Docker port issue resolved with default dapr_scheduler port
@boclifton-MSFT boclifton-MSFT added the kind/bug Something isn't working label Nov 13, 2024
@dapr-bot
Copy link
Collaborator

This issue has been automatically marked as stale because it has not had activity in the last 30 days. It will be closed in the next 7 days unless it is tagged (pinned, good first issue, help wanted or triaged/resolved) or other activity occurs. Thank you for your contributions.

@dapr-bot dapr-bot added the stale label Dec 13, 2024
@dapr-bot
Copy link
Collaborator

This issue has been automatically closed because it has not had activity in the last 37 days. If this issue is still valid, please ping a maintainer and ask them to label it as pinned, good first issue, help wanted or triaged/resolved. Thank you for your contributions.

@deanberris
Copy link

This is still a bug, any update on how to work around or fix this? @boclifton-MSFT

@antontroshin
Copy link
Contributor

Hello @boclifton-MSFT and @deanberris
I, occasionally, came across the same problem on Windows. I did some research and reading and here's my conclusion.

The error An attempt was made to access a socket in a way forbidden by its access permissions can happen when ports have been reserved by some Windows components, from reading around the internet, the most prominent are Hyper-V, Docker, and WSL, but not exclusively.
This command displays the TCP port ranges that are currently excluded (reserved for system programs) and they won't be available to user programs.
netsh int ipv4 show excludedportrange protocol=tcp
And then use netstat -noa to find which application/service using the port.
In some cases, the suggested fix is to restart Windows NAT, but that does not guarantee that the problem will be solved and is simply a variation of restarting a PC.
Sources:

A more permanent solution would be modifying the dynamic port reservation range.

BUT I STRONGLY SUGGEST AGAINST IT, ESPECIALLY ON PRODUCTION SYSTEMS

WARNING: Modifying system defaults is solely the responsibility of the user and I cannot guarantee the results or be responsible for any harm caused to the system.

You can read more on this topic here
https://learn.microsoft.com/en-us/troubleshoot/windows-server/networking/default-dynamic-port-range-tcpip-chang

In my case, I've modified the dynamic limit above the default Dapr port ranges on Windows.
View current dynamic port range: netsh int ipv4 show dynamicport tcp
Modify dynamic port range: netsh int ipv4 set dynamicport tcp start=59152 num=6384
WARNING This command will reduce by 10000 the number of dynamic ports from the default range start=49152 num 16384
Again, will urge you to exercise caution.

@deanberris
Copy link

Thanks for the suggestion. Could this be something that can be fixed in Dapr where it can pick from a set of ports, instead of using a single static port?

@BADF00D
Copy link

BADF00D commented Mar 26, 2025

Would be nice, if there will be a fix in DAPR. Restart doesn't solve the problem for me. Limiting the dynamic port range is an option, but not a good one.

@WhitWaldo
Copy link

WhitWaldo commented Mar 26, 2025
edited
Loading

Just chiming in with my workaround. From an elevated terminal, run net stop winnat, then dapr init and finally net start winnat.

I've added this as a workaround to the troubleshooting docs in an open PR.

@WhitWaldo WhitWaldo mentioned this issue Mar 26, 2025
Merged
7 tasks
@WhitWaldo WhitWaldo reopened this Mar 26, 2025
@dapr-bot dapr-bot removed the stale label Mar 26, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Troubleshoot port conflicts during dapr init on Windows WhitWaldo/dapr-docs
6 participants
@deanberris @WhitWaldo @BADF00D @antontroshin @dapr-bot @boclifton-MSFT