updated docker

Author: lerndevopss

docker/Install-Docker-manual.txt

@@ -1,22 +1,42 @@
-Install Docker Ubuntu
-=======================
+Install Docker on Ubuntu:
 
-sudo apt-get remove docker docker-engine docker.io containerd runc
-sudo apt-get update
-sudo apt-get install -y apt-transport-https ca-certificates curl gnupg-agent software-properties-common
+	sudo apt-get remove docker docker-engine docker.io containerd runc
+	sudo apt-get update
+	sudo apt-get install -y apt-transport-https ca-certificates curl gnupg-agent software-properties-common
+	curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add -
+	sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable"
+	sudo apt-get update
+	sudo apt-get install -y docker-ce docker-ce-cli containerd.io
 
-## Add Dockers official GPG key
-curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add -
-sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable"
-sudo apt-get update
-sudo apt-get install -y docker-ce docker-ce-cli containerd.io
+Add your user to the docker group, giving the user permission to run docker commands:
+        sudo usermod -aG docker cloud_user
 
-below is just FYI to know all available docker stable versions
-	## Check Available Version for Install"
+Test the installation by running a simple container:
+        docker run hello-world
+
+	## FYI Only ## Check Available Version for Install"
 	apt-cache madison docker-ce | awk '{print $3}'
 
 
 =========================================================================
+
+Install Docker on CentOS:
+
+	sudo yum install -y device-mapper-persistent-data lvm2
+	sudo yum-config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo
+	sudo yum install -y docker-ce docker-ce-cli containerd.io
+	sudo systemctl start docker
+	sudo systemctl enable docker
+
+Add your user to the docker group, giving the user permission to run docker commands:
+	sudo usermod -aG docker cloud_user
+
+Test the installation by running a simple container:
+	docker run hello-world
+
+===========================================================================
+
+
 Install docker-compose
 
 sudo curl -L https://github.com/docker/compose/releases/download/1.23.2/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose

docker/containers/readme.txt

@@ -59,9 +59,23 @@ how to access the applications running inside the container from external world
 
 Advanced Container commands 
 
+limit container resources
+	docker run -d --restart unless-stopped -p 8080:80 --memory 500M --memory-reservation 256M nginx
+	docker run -d -P --cpus=".5" nginx
+
+Run a docker container, overriding the system default logging driver settings:
+	docker run --log-driver json-file --log-opt max-size=50m nginx
+
 updating container network 
-	docker network disconnect bridge 209c1cdcb10e
-	docker network connect myb 209c1cdcb10e
+	docker network disconnect bridge <contid>
+	docker network connect myb <contid>
 
 	docker run -itd --net net1 alpine
-	docker network connect net2 contid ( container will be present in both net1 & net2 networks )
+	docker network connect net2 contid
+	( container will be present in both net1 & net2 networks )
+
+--restart flag: specify when the container should be automatically restarted
+	1) no(default): Never restart the container
+	2) on-failure: only if the container fails (exits with non-zero exit code)
+	3) always: Always restart the container whether it succeeds or fails. Also start the container automatically on  daemon startup
+	4) unless-stopped: Always restart the container whether it succeeds or fails, and the daemon startup, unless the container was manually stopeed

docker/daemon/.namespaces.txt.swp

@@ -0,0 +1,4 @@
+Docker Engine on Linux also relies on another technology called control groups (cgroups). 
+A cgroup limits an application to a specific set of resources. 
+Control groups allow Docker Engine to share available hardware resources to containers and optionally enforce limits and constraints. 
+For example, you can limit the memory available to a specific container.

docker/daemon/cgroups.txt

@@ -0,0 +1,23 @@
+Set the default logging driver
+==========================================
+
+	sudo vi /etc/docker/daemon.json
+		{
+  		   "log-driver": "syslog"
+		}
+
+		OR
+
+		{
+  		   "log-driver": "json-file",
+  		   "log-opts": {
+    			"max-size": "15m"
+  		   }
+		}
+
+	sudo systemctl restart docker
+	docker info | grep Logging
+
+	more info: https://docs.docker.com/config/containers/logging/syslog/
+
+

docker/daemon/configure-logging-drivers.txt

@@ -0,0 +1,32 @@
+Get the current storage driver:
+	docker info
+
+Two ways we can set the storage drivers
+
+	1) Set the storage driver explicitly by providing a flag to the Docker daemon:
+		 sudo vi /usr/lib/systemd/system/docker.service
+		 Edit the ExecStart line, adding the --storage-driver devicemapper flag:
+		 ExecStart=/usr/bin/dockerd --storage-driver devicemapper ...
+		 After any edits to the unit file, reload Systemd and restart Docker:
+
+		 sudo systemctl daemon-reload
+		 sudo systemctl restart docker
+
+
+	2) We can also set the storage driver explicitly using the daemon configuration file. 
+	   This is the method that Docker recommends. 
+	   Note that we cannot do this and pass the --storage-driver flag to the daemon at the same time
+
+	sudo vi /etc/docker/daemon.json
+	Set the storage driver in the daemon configuration file:
+
+		{
+			"storage-driver": "devicemapper"
+		}
+	Restart Docker after editing the file. 
+	It is also a good idea to make sure Docker is running properly after changing the configuration file:
+
+	sudo systemctl restart docker
+	sudo systemctl status docker
+
+more Info: https://docs.docker.com/storage/storagedriver/select-storage-driver/

docker/daemon/configure-storage-driver.txt

@@ -0,0 +1,8 @@
+enable dubug
+=============
+
+   vi /etc/docker/daemon.json
+
+	{
+  	   "debug": true
+	}

docker/daemon/enable-daemon-dubug.txt

@@ -0,0 +1,12 @@
+Namesapces are a linux technology that allows processes to be isolated in terms of the resources that they see. They can be used to prevent different processes from interfering or interacting with one another. 
+
+Docker uses namespaces to isolate containers. This technology allows containers to operate independently and securely. 
+
+Docker Engine uses namespaces such as the following on Linux:
+
+	pid namespace: Process isolation (PID: Process ID).
+	net namespace: Managing network interfaces (NET: Networking).
+	ipc namespace: Managing access to IPC resources (IPC: InterProcess Communication).
+	mnt namespace: Managing filesystem mount points (MNT: Mount).
+	uts namespace: Isolating kernel and version identifiers. (UTS: Unix Timesharing System).
+	User namespaces: requires special configuration. Allows container processes to run as root inside the container while mapping that user to an unprivileged user on the host.

docker/daemon/namespaces.txt

@@ -17,3 +17,12 @@ Docker Client:
 
 
 ![Docker Architecturre](DockerArchitecture.png?style=centerme)
+
+
+Container Format: 
+=================
+
+	Docker Engine combines the namespaces, control groups, and UnionFS into a wrapper called a container format.
+	The default container format is libcontainer.
+	In the future, Docker may support other container formats by integrating with technologies such as BSD Jails or Solaris Zones
+

docker/daemon/readme.md

@@ -0,0 +1,3 @@
+Union file systems, or UnionFS, are file systems that operate by creating layers, making them very lightweight and fast. 
+Docker Engine uses UnionFS to provide the building blocks for containers. 
+Docker Engine can use multiple UnionFS variants, including AUFS, btrfs, vfs, and DeviceMapper.

docker/daemon/unionFS.txt

@@ -0,0 +1,27 @@
+what is Dockefile:
+==================
+A Dockerfile is set of instructions which are used to construct a Docker Image.
+These instructions are called directives.
+
+Dockerfiel directive:
+=====================
+
+FROM: start a new build stage and sets the base image. usually must be the first directive in the Dockerfile (except ARG can be placed before FROM).
+
+ENV: set environment variables. These can be refefenced in the Dockerfile itself and are visible to the container at runtime. 
+
+RUN: creates a new layer on top of the previous layer by running a command inside that new layer and commiting the changes.
+
+CMD: specify a default command used to run a container at execution time.
+
+EXPOSE: documents which port(s) are intended to published when running a container
+
+WORKDIR: sets the current working directory for subsequent directives such as ADD, COPY, CMD, ENTRYPOINT, etc. Cna be used multiple time to change the directories throught the Dockerfile. you can also use relative path, which sets the new working direcotry relative to the previous working direcotry.
+ 
+COPY: copy files from the local machine to the image. 
+
+ADD: similar to COPY, but can also pull files using a URL and extract an archive into loose files in the image. 
+
+STOPSIGNAL: specify the signal that will be used to stop the container. 
+
+HEALTHCHECK: speciry a command to run in order to perform a custom health check to verify that the container is working properly.

docker/images/dockerfile-directives.txt

@@ -1,6 +1,19 @@
+what are Docker Images: 
+=======================
+An image is a package that consists of an application and all of its dependencies to run the application in a container. 
+containers and images use a layered file system. Each layer consists only the differences from the previous layer.
+the image consists of one or more read only layers, while container adds on one writable layer on top of image layers. 
+
+
+The layered file system allows multiple images and containers to share the same layers. 
+this would result in: 
+	smaller overall storage footprint
+	faster image transfer
+	faster image build
+	
 how to build docker image
 =========================
-   two ways
+two ways
       1) MANAUL
       2) AUTOMATED
 

docker/images/readme.md

@@ -0,0 +1,11 @@
+Create the Backup On the manager:
+	sudo systemctl stop docker
+	sudo tar -zvcf backup.tar.gz -C /var/lib/docker/swarm
+	sudo systemctl start docker
+
+Restore from Backup On the manager:
+	sudo systemctl stop docker
+	sudo rm -rf /var/lib/docker/swarm/*
+	sudo tar -zxvf backup.tar.gz -C /var/lib/docker/swarm/
+	sudo systemctl start docker
+	docker node ls