This is a quick-start guide, more like a cheatsheet for Docker containers.
Container is like a virtual machine, which uses the Linux kernel of the host machine. Each container has its own independent Linux environment and namespace, but all of the containers running on a server share the same kernel. Docker is a tool for making and managing containers, just like VirtualBox is a tool for managing virtual machines.
Containers provide several benefits:
- Resource efficiency: Severs can run multiple independent Linux environments without the memory/energy/storage overhead from the operating systems of the virtual machines.
- Maintenance: instead of writing lengthy, always outdated, instructions for installing and setting up libraries, tools, and dependencies of a project, everything can be contained in a
Dockerfilethat explains how the container image is formed, and everyone can use it to start the project development and deployment. - Development: Software developers, data scientists, designers, etc. can experiment with Linux environments that are identical to the deployment environment without time-consuming setup procedures for test servers.
Install Docker from docker.com and start Docker in terminal (If you are on mac, there is an app named "Docker Quickstart Terminal" in your Launchpad, which starts a Linux virtual machine and Docker inside it). To get help use
docker --helpA Docker image is a snapshot of a container. An image does NOT save how the container is formed; it just saves the container in its last state. To get a list of Docker images on your machine run:
docker imagesTo get help for a specific Docker command, e.g. docker images, use:
docker images --helpTo get a Docker image from Docker Hub e.g. ubuntu image run:
docker pull ubuntuTo verify if you have received the image, you can run again:
docker imagesPay attention that this command gives image REPOSITORY, TAG, and IMAGE-ID as well. You can use these in other commands to refer to an image.
To delete an image:
docker rmi IMAGE-IDYou can run an image by:
docker run IMAGE-IDor if you want an interactive terminal to remain open after running the image:
docker run -it IMAGE-IDRunning an images makes a new container.
You can get a full list of containers with:
docker ps -aPay attention that many of the containers can be already closed (exited). You can run multiple containers starting from the same image, and their status would be independent of each other.
To restart an exited container use:
docker restart CONTAINER-IDand to attach it to the terminal use:
docker attach CONTAINER-IDYou may have to press enter/return once more to see the result of the attaching.
To remove a container use:
docker rm CONTAINER-IDYou can save the state of a container by making an image from it:
docker commit CONTAINER-IDBut this is not the recommended way to save changes and generate and image because this leads to the golden image problem, which essentially means you forget how you got the container to that state.
The right way to make the images is to write step by step procedure of forming them in a file named Dockerfile, and then building an image from it:
docker build .Make sure that you are in the directory of the Dockerfile, when running it as above. A sample Dockerfile is provided in this repository.
Once you have a Docker image that you want to save it on Docker Hub, make an account there, and back in the terminal login with:
docker loginIf your image is not named and tagged properly, tag it with:
docker tag IMAGE-ID DOCKERHUB-USERNAME/IMAGE-NAME:IMAGE-TAGe.g. docker tag e051d77e98f8 atamahjoubfar/handy-ubuntu:latest.
Then, send it to Docker Hub by running:
docker push DOCKERHUB-USERNAME/IMAGE-NAME:IMAGE-TAGe.g. docker push atamahjoubfar/handy-ubuntu:latest.
By default, container ports are not exposed to the host machine. They can be used by processes inside the container, but not from outside of the container. If you want to expose a port, you should specify the ports that you want to be forwarded from the host machine. This can be done by running the docker run command with extra options about port forwarding:
docker run -p HOST-PORTS:CONTAINER-PORTS IMAGE-IDFor example:
docker run -p 4999-5003:4999-5003 -it 2592718a33b0In addition, in Mac OS, you should forward the port from the host machine to the virtual Linux machine that docker is running on. The easy way to set this is to use the VirtualBox GUI for setting as shown in the image below:
Also, note that in principle, one should be able to expose a port by EXPOSE instruction in Dockerfile and docker run -P, but I was not able to get it work on Mac.
Data volumes are used to preserve and share data between containers. You can get a full list of volumes by:
docker volume listand delete a volume by:
docker volume rm VOLUME-NAMEI didn't find a direct way to check the contents of a volume, but I managed to do that by mounting it on a new container e.g.
docker run -it --volume=VOLUME-NAME:/mydata/myvolume ubuntu bashand then in the containers bash shell going to the mount directory and listing the files:
cd /mydata/myvolume
ls -alhIt is possible to run multiple services in a single docker, but it is not the recommended way. One of the goals of using containers is to separate concerns regarding multiple services.
To form a single package with multiple services, docker-compose should be used. docker-compose runs multiple containers linked to each other as a single package. The composition is defined in a file named docker-compose.yml and the following command can be used to update build of a package and run it:
docker-compose up --buildTo stop the containers press Control+C. To remove all the containers that are created and their volumes type:
docker-compose down -vIf one of the images in the docker-compose.yml generates its own volume in its Dockerfile, you can find the mount destination of that volume in its container by docker inspect CONTAINER-ID and mount your own volume there to prevent container from making its own volume.
You can get into the shell of the containers that are running, by connecting to them in another terminal window. Use docker ps -a to get the CONTAINER-ID, and then run:
docker exec -it CONTAINER-ID bash
You will be logged in as a root user into the container. If the container doesn't have bash, try sh instead. Type exit to exit the container.
You can delete all of the containers by:
docker rm $(docker ps -a -q)Delete all of the images by:
docker rmi $(docker images -q)And delete all of the volumes by:
docker volume rm $(docker volume list -q)