Internet resources
https://docs.docker.com/get-started/
https://docs.docker.com/engine/reference/builder/
Official containers:
https://hub.docker.com/search?q=&type=image&image_filter=official
Installation
Install from docker repo:
sudo install -m 0755 -d /etc/apt/keyringscurl -fsSL https://download.docker.com/linux/debian/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg
sudo chmod a+r /etc/apt/keyrings/docker.gpgAdd following to /etc/apt/sources.list.d/docker.list:
sudo editor /etc/apt/sources.list.d/docker.listdeb [arch=amd64 signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/debian bullseye stablesudo apt update
sudo apt install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-pluginTest:
sudo systemctl start docker
sudo docker run hello-world sudo systemctl enable dockerDON’T ADD ANY USER TO DOCKER GROUP`!!!
This means, that you have to delete the user that installed docker from the docker group in /etc/group.
Rootless mode
Rootless mode means running docker without root privileges. However, on Debian 11, that may generate some troubles…
Link: https://docs.docker.com/engine/security/rootless/
Images and Containers
Images are not yet running containers including one application and the os fundamentals for it.
Containers are running or sleeping instances of applications that are enclosed by the container.
Dowload and run official images
List available images:
docker imagesGet an image:
docker pull image:tagE.g:
docker pull debian:bullseyeSetting up images
Create directory wherever you want. Copy config files for the service to the directory. cd to that directory
Create Dockerfile in the dir.
Build image:
docker build -t <<repository>>/<<tag>> .
repository may be somethin like a name that explaines the containers purpose (samba_debian) the tag my be a version
Managing images
Show images on host:
sudo docker images
Handy option: -q (only return IDs)
Remove image (get id with command above):
sudo docker rmi <<Image ID>>
Remove all images:
sudo docker rmi $(sudo docker images -q)Managing containers
Start container (text from docs.docker.com):
Run the following command to start a container based on your new image:
docker run --publish 8000:8080 --detach --name <<name>><<repository>>:<<tag>>
There are a couple of common flags here:
--publishasks Docker to forward traffic incoming on the host’s port 8000 to the container’s port 8080. Containers have their own private set of ports, so if you want to reach one from the network, you have to forward traffic to it in this way. Otherwise, firewall rules will prevent all network traffic from reaching your container, as a default security posture.--detachasks Docker to run this container in the background.--namespecifies a name with which you can refer to your container in subsequent commands, in this casebb.
Start container with interactive shell:
sudo docker run -it <<repository>>:<<tag>> /bin/bash
Stop container:
sudo docker stop <<name>>
Stop all containers:
sudo docker stop $(sudo docker ps -q)Restart container:
sudo docker restart <<container name>>Show all containers on host:
sudo docker ps -a
Handy option: -q (only return IDs)
Show running containers on host:
sudo docker ps
Remove container:
sudo docker rm <<container name>>
Remove all containers:
sudo docker rm $(sudo docker ps -aq)
Getting command line in a container
Get your containers id with „docker ps“ and use „docker exec“ to start a bash inside it:
sudo docker exec -it <<Container ID>> /bin/bashDocker compose
https://docs.docker.com/compose/
create folder and your compose file with ending .yml inside it. Thendownload needed images, compile local images and start everything with:
docker compose up &