Difference between revisions of "Docker"
Line 32: | Line 32: | ||
=== Configuration files === | === Configuration files === | ||
Ubuntu: | Ubuntu: | ||
− | * <code>/etc/docker/ | + | * <code>[[/etc/docker/daemon.json]]</code> (Ref: https://docs.docker.com/engine/reference/commandline/dockerd/) |
* <code>/etc/docker/[[key.json]]</code> | * <code>/etc/docker/[[key.json]]</code> | ||
Revision as of 11:03, 24 November 2020
Docker is a software utility to pack, ship and run any containers application available since March 2013.
Contents
Features
Docker offer the following features:
- Package an application and its dependencies in a virtual container that can run on any Linux server (docker images)
- Pull or push docker images to a container repository/container registry (
docker pull
[1],docker push
). By default docker hub but you can specify any other registry.
Installing Docker
You can read official Docker documentation about installing Docker on your system: https://docs.docker.com/install/.
On macOS you can follow official documentation https://docs.docker.com/docker-for-mac/install/ which requires to create and account to download installer. You can also try:
brew cask install docker
or try to follow https://pilsniak.com/how-to-install-docker-on-mac-os-using-brew/ instructions:
brew install docker docker-compose docker-machine
(to install docker and docker-compose)brew cask install virtualbox
docker-machine create --driver virtualbox default
docker-machine ls
docker-machine env default
eval $(docker-machine env default)
docker run hello-world
(will pull hello-world image and run it on docker)
Ubuntu
apt install docker.io
snap install docker
(officially provided by Canonical)
Binaries
Following binaries will be installed: docker-init
, docker-proxy
, docker
and dockerd
Verifying Docker installation
Once installed the Docker daemon, called "dockerd"
should be running.
You can also run docker run hello-world
to verify docker correct installation.
Configuration files
Ubuntu:
/etc/docker/daemon.json
(Ref: https://docs.docker.com/engine/reference/commandline/dockerd/)/etc/docker/key.json
Directories
/var/lib/docker (The Docker daemon was explicitly designed to have exclusive access to)[2]
Docker Releases (Docker Engine release notes)
Use: docker version
[3] to check your version.
You can download Docker CE source code from GitHub[4].
Docker Command Line
You can read official docker command line documentation in https://docs.docker.com/engine/reference/commandline/docker/. Before being able to run docker commands you will have to install Docker on your machine.
Some typical task using containers:
Docker verification commands
- Verify correct installation:
docker run hello-world
You will see some message similar to this one:
Unable to find image 'hello-world:latest' locally latest: Pulling from library/hello-world ca4f61b1923c: Pull complete Digest: sha256:97ce6fa4b6cdc0790cda65fe7290b74cfebd9fa0c9b8c38e979330d547d22ce1 Status: Downloaded newer image for hello-world:latest Hello from Docker! This message shows that your installation appears to be working correctly. To generate this message, Docker took the following steps: 1. The Docker client contacted the Docker daemon. 2. The Docker daemon pulled the "hello-world" image from the Docker Hub. (amd64) 3. The Docker daemon created a new container from that image which runs the executable that produces the output you are currently reading. 4. The Docker daemon streamed that output to the Docker client, which sent it to your terminal. To try something more ambitious, you can run an Ubuntu container with: $ docker run -it ubuntu bash Share images, automate workflows, and more with a free Docker ID: https://cloud.docker.com/ For more examples and ideas, visit: https://docs.docker.com/engine/userguide/
Docker image and container creation
- Create a new docker image base on alpine linux distribution and login into the new container:
docker run -it alpine sh
- Create a new docker image:
docker build
- Create a new docker image by creating a new text file with instructions, usually called
Dockerfile
[5]:docker build -f /path/to/a/Dockerfile .
- Create a new docker image by creating a new text file with instructions, usually called
- Create a container:
docker create
- Generate a mediawiki:1.27 image:
docker build --tag mediawiki:1.27 .
(you can use -t or --tag) - Execute or run a container based on mediawiki:1.27 image:
docker run --name wikiFGA -p 0.0.0.0:9090:80 -d mediawiki:1.27
Docker Container Operation
- Start an existing container:
docker start CONTAINER_ID OR CONTAINER_NAME
. See alsodocker run
and differences[6] anddocker container start
- Stop an running container:
docker stop container_id
- Show only running containers:
docker container ls
[7] ordocker ps
[8]. (docker container ls
) introduced in 2017 in Docker 1.13[9] (There is no difference between both commands)[10]
- Show containers (running or not):
docker ps -a
: https://docs.docker.com/engine/reference/commandline/ps/docker container ls -a
. See alsodocker-compose ps
- Login/Connect into a running container:
docker exec[11] -it <my_container_name> bash
docker exec -it <my_container_name> sh
docker run -it --user USER_NAME CONTAINER_NAME
- Start stopped containers:
docker start $(docker ps -a -q -f status=exited)
- Restart all containers:
docker restart $(docker ps -aq)
previouslydocker restart $(docker ps -q)
-a all -q quiet
[12]
See also: docker compose
and docker stack
Docker images management
- List created images:
docker images
[14],docker image ls
(both commands seems to perform the same action, note it is image instead of images) - Images are stored in
docker info | grep "Docker Root Dir"
[15] docker image rm
[16]. See also:docker rm CONTAINER
docker rmi IMAGE_ID
Docker Network command line commands
docker network ls
docker network inspect NETWORK_NAME
- Deprecated:
docker --link
[17] docker network create NETWORK_NAME
docker network rm
docker network prune
docker network connect
docker network -rm
Docker resource limitation
- Limit container CPU usage to 0.5 cpus:
docker run -it --cpus=".5" docker_image /bin/bash
- Limit memory requires your kernel to have functionality activated, you can check it executing
docker info
. See https://docs.docker.com/install/linux/linux-postinstall/ and docker-compose resource limitation example: Version 3 resouces
Docker: Working with remote repositories/registries
You will be using mainly the following commands docker login
, docker logout
, docker pull
and docker push
. Docker registry allow to configure notifications. [18]. Docker has a public repository called Docker Hub and cloud providers offer repositories services such as AWS Elastic Container Registry (ECR).
Docker Information
docker version
https://docs.docker.com/engine/reference/commandline/version/docker info
https://docs.docker.com/engine/reference/commandline/info/docker stats
https://docs.docker.com/engine/reference/commandline/stats/docker system info
https://docs.docker.com/v17.12/edge/engine/reference/commandline/system_info/docker system events
https://docs.docker.com/v17.12/edge/engine/reference/commandline/system_events/docker system df
docker top[CONTAINER_NAME or CONTAINER_ID]
https://docs.docker.com/engine/reference/commandline/top/docker inspect CONTAINER_ID|IMAGE_ID
[19] https://docs.docker.com/engine/reference/commandline/inspect/ also available for: container, image, volume, network, node, service, or taskdocker images
,docker images -q
docker image inspect
[20]docker image ls
ordocker image ls --no-trunc
docker volume ls
docker history IMAGE
docker ps
Docker Operation
docker run[21] IMAGE|IMAGE_ID
: https://docs.docker.com/engine/reference/run/docker start CONTAINER_ID|CONTAINER_NAME
: https://docs.docker.com/engine/reference/commandline/start/docker stop CONTAINER_ID|CONTAINER_NAME
: https://docs.docker.com/engine/reference/commandline/stop/docker restart CONTAINER_ID|CONTAINER_NAME
: https://docs.docker.com/engine/reference/commandline/restart/
Docker/cgroup Performance information
Docker Swarm
docker swarm init
docker swarm
[22]docker nodes
docker node ls
docker swarm join
docker service create
Maintenance
docker system prune -a
remove unused and dangling images. Therefore any images being used in a container, whether they have been exited or currently running, will NOT be affected.[23]. See also:docker system info
Docker Volumes
docker volume create --name VOLUME_NAME
docker volume ls
: https://docs.docker.com/engine/reference/commandline/volume_ls/docker volume rm VOLUME_NAME
docker volume
: https://docs.docker.com/engine/reference/commandline/volume/docker volume inspect VOLUME
: https://docs.docker.com/engine/reference/commandline/volume_inspect/docker inspect -f '{{ .Mounts }}' CONTAINER_NAME
docker volumes prune
docker system prune --volumes
Secrets
docker secrets
(Feb 2017)[24] (swarm mode only)
Docker logging
Related terms
Activities
- Read docker blog: https://blog.docker.com/
- Read Docker Engine release notes (2017) and Docker CE or Docker EE releases.
- Understand the difference between an image and a container, Docker Images vs. Containers: https://stackoverflow.com/a/26960888
- Understand the difference between
docker start
anddocker run
: https://stackoverflow.com/questions/34782678/difference-between-running-and-starting-a-docker-container. See also runC - Read Stackoverflow questions related to docker: https://stackoverflow.com/questions/tagged/docker?tab=Votes
- Read about Docker Image Manifest Version 2, Schema 2: https://github.com/docker/distribution/blob/fda42e5ef908bdba722d435ff1f330d40dfcd56c/docs/spec/manifest-v2-2.md
See also
- Docker:
docker-compose
, Docker Desktop, Docker Scout, Docker Swarm, Docker Volumes, Docker images management, docker network,docker inspect
,docker volume inspect
,Dockerfile
, Docker Engine release notes,docker kill
,moby
, Docker-in-Docker,docker context
,buildx
,docker tag
,docker system prune
, Docker Hub,hub-tool, /etc/docker/daemon.json
,hostconfig.json
, dockerd, logs, Docker logging, Backup,docker service
,depends on
,--dns, --filter
,--mount
,docker login
,docker build
,apt remove docker.io
,.dockerignore
, docker context ls |docker-machine, .docker/
, PWD,$HOME/.docker/config.json
, Docker ID,--env-file, docker --help
- Docker: dockerd, docker (command), dockerd-ce (dockerd), docker-proxy, Docker Kubernetes Service (DKS),
/var/lib/docker/, /var/run/docker.sock
, 9323, /etc/docker/daemon.json - Docker Hub official Docker container image registry
docker-compose
,docker-compose.yml
: [services
|volumes
|networks
|up
|down
|restart
|logs
|create
|changelog
|version
|secrets
|config
|-v
|-h
|exec], docker-compose pull
,Environment:
, Docker-compose.yml examples,.env
, release notes, expose:, docker-compose --env-file,services.deploy.resources
- Elastic Container Service (ECS)
- AWS Elastic Container Registry (ECR)
- Kubernetes: distributions, tools, CKA, CKS, Kubernetes interfaces: CSI, CNI, installation, workloads, networking,
kubeadm
,Kubernetes API
, Kubernetes API Server,kubectl, kubeadm, kubelet, kube-proxy
, Cloud services: EKS, GKE, TKE, DKS, Helm, Kubernetes RBAC, Kubernetes deployments, Minikube, Rancher, OpenShift, Charmed Kubernetes, Ingress, Kubernetes scheduler, Kubernetes Finalizers, logging, Kubernetes operator, Orka,kind:
, Kubernetes namespaces, Kubernetes dashboard, Kubernetes Metrics Server, Field Selectors, CoreDNS, CRI, Kubernetes Topology Manager, Kubernetes governance: (SIG, KEP), Kustomize, controllers,ReadinessProbe, LivenessProbe
, KOPS, K9s, Kui, k3s, ImagePullBackOff, PDB, EndPoints, Kots, metadata, Karpenter, Replicated.com, Kubernetes Authenticating, Kubernetes timeline, Changelog/Versions, service accounts, Kubernetes Pod Lifecycle, Kubernetes Conformance Certified, Kubernetes backup, Kubernetes Pod Security Admission, tEKS, Kubernetes events, Kubernetes ports, Kubernetes policies, Connect, addons, DoKC, Kubernetes control plane, Kubernetes Federation, Kubernetes info, Kubetest2, Sidecar (Kubernetes) - Kubernetes cloud services: EKS, GKE (Anthos), AKS, Docker Kubernetes Service (DKS), TKE
- Container orchestration: Kubernetes, Nomad, Docker Swarm, OpenShift, Mesos, Marathon, AWS Fargate
- Virtualization: KVM, VirtualBox, multipass, containers, Vagrant, Packer, Hyper-V, VMware, Parallels, Bhyve, Virtual machine
Text is available under the Creative Commons Attribution-ShareAlike License; additional terms may apply. By using this site, you agree to the Terms of Use and Privacy Policy.
Source: https://en.wikiversity.org/wiki/DevOps/Docker
- ↑ https://docs.docker.com/engine/reference/commandline/pull/
- ↑ https://jpetazzo.github.io/2015/09/03/do-not-use-docker-in-docker-for-ci/
- ↑ https://docs.docker.com/engine/reference/commandline/version/
- ↑ https://github.com/docker/docker-ce/releases
- ↑ https://docs.docker.com/engine/reference/builder/
- ↑ https://stackoverflow.com/questions/34782678/difference-between-running-and-starting-a-docker-container
- ↑ https://docs.docker.com/engine/reference/commandline/container_ls/
- ↑ https://docs.docker.com/engine/reference/commandline/ps/
- ↑ https://www.docker.com/blog/whats-new-in-docker-1-13/
- ↑ https://stackoverflow.com/a/45254760
- ↑ https://docs.docker.com/engine/reference/commandline/exec/
- ↑ https://stackoverflow.com/questions/38221463/command-for-restarting-all-running-docker-containers
- ↑ https://docs.docker.com/config/containers/start-containers-automatically/#use-a-restart-policy
- ↑ https://docs.docker.com/engine/reference/commandline/images/
- ↑ https://stackoverflow.com/questions/19234831/where-are-docker-images-stored-on-the-host-machine
- ↑ https://docs.docker.com/engine/reference/commandline/image_rm/
- ↑ https://docs.docker.com/network/links/
- ↑ https://docs.docker.com/registry/notifications/
- ↑ http://manpages.ubuntu.com/manpages/disco/man1/docker-inspect.1.html
- ↑ https://docs.docker.com/engine/reference/commandline/image_inspect/
- ↑ https://docs.docker.com/engine/reference/run/
- ↑ <https://docs.docker.com/engine/reference/commandline/swarm/
- ↑ https://stackoverflow.com/a/45143234
- ↑ https://www.docker.com/blog/docker-secrets-management/
- ↑ https://docs.docker.com/engine/reference/commandline/tag/
Advertising: