centos 7 安装 Docker Engine-CentOS 社区版

获取Docker Engine-CentOS社区: https://docs.docker.com/install/linux/docker-ce/centos/

 

1.操作系统要求

1.1 要安装 Docker Engine-Community ,您需要一个 CentOS 7 的维护版本.不支持或未测试存档版本.

1.2 该 centos-extras 库必须启用.默认情况下,此存储库是启用的,但是如果已禁用它,则需要 重新启用它.

1.3 overlay2 建议使用存储驱动程序.

< centos-extras >
CentOS Extras-在 CentOS 5 和 6 中,为CentOS提供附加功能而不破坏上游兼容性或更新基本组件的软件包,但未经上游测试或上游产品中没有提供. 在 CentOS 7 中,这是一个上游存储库,以及其他CentOS软件包.CentOS 开发团队已经测试了该存储库中的每个项目,并且它们都与 CentOS 一起使用. 该存储库随CentOS一起提供,并且默认情况下处于启用状态.

 

------------------------------------------------------------------------------------------
开启 CentOS Extra
路径 /etc/yum.repos.d
文件 CentOS-Base.repo
[extras] //extras 模块
enabled=0 //编辑把 "0" 修改为 "1" ,没有enabled=0或1,建议添加 enabled=1 启动 extras 软件模块仓库
#软件仓库被配置成 enabled=0 时,yum 在安装或升级软件包时不会将该仓库做为软件包提供源.
------------------------------------------------------------------------------------------

 

[root@localhost yum.repos.d]# (cat -n CentOS-Base.repo;pwd)
     1  # CentOS-Base.repo
     2  #
     3  # The mirror system uses the connecting IP address of the client and the
     4  # update status of each mirror to pick mirrors that are updated to and
     5  # geographically close to the client.  You should use this for CentOS updates
     6  # unless you are manually picking other mirrors.
     7  #
     8  # If the mirrorlist= does not work for you, as a fall back you can try the 
     9  # remarked out baseurl= line instead.
    10  #
    11  #
    12
    13  [base]
    14  name=CentOS-$releasever - Base
    15  mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=os&infra=$infra
    16  #baseurl=http://mirror.centos.org/centos/$releasever/os/$basearch/
    17  gpgcheck=1
    18  gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7
    19
    20  #released updates 
    21  [updates]
    22  name=CentOS-$releasever - Updates
    23  mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=updates&infra=$infra
    24  #baseurl=http://mirror.centos.org/centos/$releasever/updates/$basearch/
    25  gpgcheck=1
    26  gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7
    27
    28  #additional packages that may be useful
    29  [extras]
    30  name=CentOS-$releasever - Extras
    31  mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=extras&infra=$infra
    32  #baseurl=http://mirror.centos.org/centos/$releasever/extras/$basearch/
    33  gpgcheck=1
    34  enabled=1
    35  gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7
    36
    37  #additional packages that extend functionality of existing packages
    38  [centosplus]
    39  name=CentOS-$releasever - Plus
    40  mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=centosplus&infra=$infra
    41  #baseurl=http://mirror.centos.org/centos/$releasever/centosplus/$basearch/
    42  gpgcheck=1
    43  enabled=0
    44  gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7
    45
/etc/yum.repos.d

 2.卸载旧版本

sudo yum remove docker \
docker-client \
docker-client-latest \
docker-common \
docker-latest \
docker-latest-logrotate \
docker-logrotate \
docker-engine

较旧的Docker版本称为docker或docker-engine.如果已安装这些程序,请卸载它们以及相关的依赖项.

[root@localhost ~]# sudo yum remove docker \
> docker-client \
> docker-client-latest \
> docker-common \
> docker-latest \
> docker-latest-logrotate \
> docker-logrotate \
> docker-engine

3.使用存储库安装

在新主机上首次安装Docker Engine-Community之前,需要设置Docker存储库.之后,您可以从存储库安装和更新Docker.

设置存储库

3.1 安装所需的软件包.yum-utils提供了yum-config-manager 效用,并device-mapper-persistent-data和lvm2由需要 devicemapper存储驱动程序.

sudo yum install -y yum-utils \
device-mapper-persistent-data \
lvm2
[root@localhost ~]# sudo yum install -y yum-utils \
> device-mapper-persistent-data \
> lvm2

3.2 使用以下命令来设置稳定的存储库.

sudo yum-config-manager \
--add-repo \
https://download.docker.com/linux/centos/docker-ce.repo
[root@localhost ~]# sudo yum-config-manager \
> --add-repo \
> https://download.docker.com/linux/centos/docker-ce.repo

 4.安装 DOCKER ENGINE-CentOS 社区版

安装最新版本的Docker Engine-Community和containerd,或者转到下一步安装特定版本:

sudo yum install -y docker-ce docker-ce-cli containerd.io
[root@localhost ~]# sudo yum install -y docker-ce docker-ce-cli containerd.io 

如果提示您接受GPG密钥,请验证指纹是否匹配 060A 61C5 1B55 8A7F 742B 77AA C52F EB6B 621E 9F35,如果是,则接受它.

5.有多个Docker存储库吗?

如果启用了多个Docker存储库,则在未在yum installor yum update命令中指定版本的情况下进行安装或更新将始终安装可能的最高版本,这可能不适合您的稳定性需求.

Docker已安装但尚未启动.docker创建该组,但没有用户添加到该组.

要安装特定版本的Docker Engine-Community,请在存储库中列出可用版本,然后选择并安装:

一种.列出并排序您存储库中可用的版本.此示例按版本号(从高到低)对结果进行排序,并被截断:

yum list docker-ce --showduplicates | sort -r
[root@localhost ~]# yum list docker-ce --showduplicates | sort -r
 * updates: mirrors.aliyun.com
Loading mirror speeds from cached hostfile
Loaded plugins: fastestmirror
Installed Packages
 * extras: mirrors.aliyun.com
 * epel: hkg.mirror.rackspace.com
docker-ce.x86_64            3:19.03.3-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:19.03.3-3.el7                    @docker-ce-stable
docker-ce.x86_64            3:19.03.2-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:19.03.1-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:19.03.0-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.9-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.8-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.7-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.6-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.5-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.4-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.3-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.2-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.1-3.el7                    docker-ce-stable 
docker-ce.x86_64            3:18.09.0-3.el7                    docker-ce-stable 
docker-ce.x86_64            18.06.3.ce-3.el7                   docker-ce-stable 
docker-ce.x86_64            18.06.2.ce-3.el7                   docker-ce-stable 
docker-ce.x86_64            18.06.1.ce-3.el7                   docker-ce-stable 
docker-ce.x86_64            18.06.0.ce-3.el7                   docker-ce-stable 
docker-ce.x86_64            18.03.1.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            18.03.0.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.12.1.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.12.0.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.09.1.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.09.0.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.06.2.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.06.1.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.06.0.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.03.3.ce-1.el7                   docker-ce-stable 
docker-ce.x86_64            17.03.2.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.03.1.ce-1.el7.centos            docker-ce-stable 
docker-ce.x86_64            17.03.0.ce-1.el7.centos            docker-ce-stable 
 * base: mirrors.aliyun.com
Available Packages

返回的列表取决于启用的存储库,并且特定于您的CentOS版本(.el7在此示例中以后缀表示)

通过其完全合格的软件包名称安装特定版本,该软件包名称是软件包名称(docker-ce)加上版本字符串(第二列),从第一个冒号(:)一直到第一个连字符,并用连字符(-)分隔.例如,docker-ce-18.09.1

sudo yum install -y docker-ce-<VERSION_STRING> docker-ce-cli-<VERSION_STRING> containerd.io

Docker已安装但尚未启动.

6.启动Docker

[root@localhost ~]# sudo systemctl start docker 

7.检查Docker进程

[root@localhost ~]# pgrep -l docker
7286 dockerd

8.通过运行 hello-world 映像来验证是否正确安装了Docker Engine-Community.

[root@localhost ~]# sudo docker run hello-world
Unable to find image 'hello-world:latest' locally
latest: Pulling from library/hello-world
1b930d010525: Pull complete 
Digest: sha256:c3b4ada4687bbaa170745b3e4dd8ac3f194ca95b2d0518b417fb47e5879d9b5f
Status: Downloaded newer image for hello-world:latest

Hello from Docker!
This message shows that your installation appears to be working correctly.

To generate this message, Docker took the following steps:
 1. The Docker client contacted the Docker daemon.
 2. The Docker daemon pulled the "hello-world" image from the Docker Hub.
    (amd64)
 3. The Docker daemon created a new container from that image which runs the
    executable that produces the output you are currently reading.
 4. The Docker daemon streamed that output to the Docker client, which sent it
    to your terminal.

To try something more ambitious, you can run an Ubuntu container with:
 $ docker run -it ubuntu bash

Share images, automate workflows, and more with a free Docker ID:
 https://hub.docker.com/

For more examples and ideas, visit:
 https://docs.docker.com/get-started/

运行命令下载测试图像并在容器中运行。容器运行时,它会打印参考消息并退出.

Docker Engine-Community已安装并正在运行.

您需要使用sudo来运行Docker命令.继续进行Linux后安装,以允许非特权用户运行Docker命令以及其他可选配置步骤.

Docker创建该组,但没有用户添加到该组.

1.创建用户名

[root@localhost ~]# useradd wwweee000
[root@localhost ~]# passwd wwweee000
Changing password for user wwweee000.
New password: 
BAD PASSWORD: The password is a palindrome
Retype new password: 
passwd: all authentication tokens updated successfully.

2.创建docker用户组名

[root@localhost ~]# sudo groupadd docker
groupadd: group 'docker' already exists

3. 应用wwweee000用户加入docker用户组

[root@localhost ~]# sudo usermod -aG docker wwweee000

4. 切换或者退出当前账户再从新登入

su root             切换到root用户
su wwweee000        再切换到原来的应用用户以上配置才生效

[root@localhost ~]# vi /etc/sudoers
root    ALL=(ALL)         ALL
wwweee000    ALL=(ALL)         ALL
[root@localhost ~]# cat -n /etc/sudoers | grep "root\|wwweee000"
     2  ## the root user, without needing the root password.
    99  ## Allow root to run any commands anywhere 
   100  root    ALL=(ALL)       ALL
   101  wwweee000    ALL=(ALL)       ALL
   114  ## cdrom as root
[root@localhost ~]# chmod u+w /etc/sudoers
[root@localhost ~]# newgrp docker
[root@localhost ~]# sudo systemctl restart docker
[root@localhost ~]# su wwweee000
[wwweee000@localhost root]$ cd
[wwweee000@localhost ~]$ docker run hello-world

Hello from Docker!
This message shows that your installation appears to be working correctly.

To generate this message, Docker took the following steps:
 1. The Docker client contacted the Docker daemon.
 2. The Docker daemon pulled the "hello-world" image from the Docker Hub.
    (amd64)
 3. The Docker daemon created a new container from that image which runs the
    executable that produces the output you are currently reading.
 4. The Docker daemon streamed that output to the Docker client, which sent it
    to your terminal.

To try something more ambitious, you can run an Ubuntu container with:
 $ docker run -it ubuntu bash

Share images, automate workflows, and more with a free Docker ID:
 https://hub.docker.com/

For more examples and ideas, visit:
 https://docs.docker.com/get-started/
[wwweee000@localhost ~]$ su root
Password: 
[root@localhost wwweee000]# cd
[root@localhost ~]# 

说明:
这里说下你可以sudoers添加下面四行中任意一条 

youuser ALL=(ALL) ALL 
%youuser ALL=(ALL) ALL 
youuser ALL=(ALL) NOPASSWD: ALL 
%youuser ALL=(ALL) NOPASSWD: ALL

第一行:允许用户youuser执行sudo命令(需要输入密码). 
第二行:允许用户组youuser里面的用户执行sudo命令(需要输入密码). 
第三行:允许用户youuser执行sudo命令,并且在执行的时候不输入密码. 
第四行:允许用户组youuser里面的用户执行sudo命令,并且在执行的时候不输入密码.

撤销sudoers文件写权限,命令: chmod u-w /etc/sudoers

 ----------------------------------------------------------------------------------------------------------------------------------------------------------

 ------------------------------------------------------------------安装完成  ---------------------------------------------------------------------------

 ----------------------------------------------------------------------------------------------------------------------------------------------------------

 ----------------------------------------------------------------------------------------------------------------------------------------------------------

 

1.从软件包安装(参考)

如果无法使用Docker的存储库安装Docker,则可以下载该.rpm发行版的 文件并手动安装.
每次升级Docker Engine-Community时,都需要下载一个新文件.

转到 https://download.docker.com/linux/centos/7/x86_64/stable/Packages/ 并下载.rpm要安装的Docker版本的文件.

注意:要安装夜间 或测试(预发布)软件包,stable 请将上述URL中的单词更改为nightly或test. 了解每晚和测试频道.

安装 Docker Engine-Community ,将下面的路径更改为您下载Docker软件包的路径.

[root@localhost ~]# sudo yum install /path/to/package.rpm

Docker已安装但尚未启动.docker创建该组,但没有用户添加到该组.

启动Docker.

[root@localhost ~]# sudo systemctl start docker

通过运行hello-world 映像来验证是否正确安装了 Docker Engine-Community .

[root@localhost ~]# sudo docker run hello-world

运行命令下载测试图像并在容器中运行.容器运行时,它会打印参考消息并退出.

Docker Engine-Community已安装并正在运行.您需要使用sudo来运行Docker命令.
继续执行Linux的安装后步骤,以允许非特权用户运行Docker命令以及其他可选配置步骤.

升级DOCKER引擎-社区

要升级Docker Engine-Community,请下载更新的软件包文件,然后使用 代替,并指向新文件,重复 安装过程.

[root@localhost ~]# yum -y upgradeyum -y install

2.使用便捷脚本进行安装(参考)

Docker在get.docker.com 和test.docker.com上提供了方便脚本,用于将Docker Engine-Community的边缘版本和测试版本快速且非交互地安装到开发环境中.
脚本的源代码在 docker-install存储库中.
不建议在生产环境中使用这些脚本,在使用它们之前,您应该了解潜在的风险:

脚本需要运行root或具有sudo特权.因此,在运行脚本之前,应仔细检查和审核脚本.
这些脚本尝试检测Linux发行版和版本,并为您配置软件包管理系统.此外,脚本不允许您自定义任何安装参数.
从Docker的角度或您自己组织的准则和标准的角度来看,这可能导致不支持的配置.
这些脚本将安装软件包管理器的所有依赖项和建议,而无需进行确认.这可能会安装大量软件包,具体取决于主机的当前配置.
该脚本未提供用于指定要安装哪个版本的Docker的选项,而是安装了在“ edge”通道中发布的最新版本.
如果已使用其他机制将Docker安装在主机上,请不要使用便捷脚本.
本示例使用get.docker.com上的脚本在Linux上安装最新版本的Docker Engine-Community.
要安装最新的测试版本,请改用test.docker.com.在下面的每个命令,取代每次出现get用test.

警告:

在本地运行之前,请务必检查从Internet下载的脚本.

[root@localhost ~]# curl -fsSL https://get.docker.com -o get-docker.sh
[root@localhost ~]# sudo sh get-docker.sh

<output truncated>

如果要使用Docker作为非root用户,则现在应考虑使用类似以下方式将用户添加到“ docker”组:

[root@localhost ~]# sudo usermod -aG docker wwweee000

请记住注销并重新登录才能生效!

警告:

将用户添加到“docker”组后,他们可以运行容器,该容器可用于获取Docker主机上的根特权.

Docker Engine-CentOS社区已安装.它会自动在DEB基于发布的版本上启动.
在 RPM 基于发行版的系统上,您需要使用相应的systemctl或service命令手动启动它 .
如消息所示,默认情况下,非root用户无法运行Docker命令.

使用便捷脚本后升级DOCKER
如果使用便捷脚本安装了Docker ,则应直接使用包管理器升级 Docker.
重新运行便利程序脚本没有任何好处,并且如果尝试重新添加已经添加到主机的存储库,则可能导致问题.

卸载Docker Engine-社区
卸载Docker软件包:

[root@localhost ~]# sudo yum remove docker-ce

主机上的映像,容器,卷或自定义配置文件不会自动删除.要删除所有图像,容器和卷:

[root@localhost ~]# sudo rm -rf /var/lib/docker

您必须手动删除所有已编辑的配置文件.

 ----------------------------------------------------------------------------------------------------------------------------------------------------------

 ---------------------------------------------overlay2 建议使用存储驱动程序.------------------------------------------------------------------

 ----------------------------------------------------------------------------------------------------------------------------------------------------------

 ----------------------------------------------------------------------------------------------------------------------------------------------------------

1.docker默认的存储目录是/var/lib/docker
[root@localhost ~]# ls -lh /var/lib/docker
total 8.0K
drwx------  2 root root   24 Oct 10 01:10 builder
drwx--x--x  4 root root   92 Oct 10 01:10 buildkit
drwx------  7 root root 4.0K Oct 10 02:05 containers
drwx------  3 root root   22 Oct 10 01:10 image
drwxr-x---  3 root root   19 Oct 10 01:10 network
drwx------ 17 root root 4.0K Oct 10 02:05 overlay2
drwx------  4 root root   32 Oct 10 01:10 plugins
drwx------  2 root root    6 Oct 10 01:52 runtimes
drwx------  2 root root    6 Oct 10 01:10 swarm
drwx------  2 root root    6 Oct 10 02:05 tmp
drwx------  2 root root    6 Oct 10 01:10 trust
drwx------  2 root root   25 Oct 10 01:10 volumes

2.启动nginx容器
[root@localhost ~]# docker run -d nginx  //会下载nginx镜像并运行一个nginx镜像容器进程
Unable to find image 'nginx:latest' locally
latest: Pulling from library/nginx
b8f262c62ec6: Pull complete 
e9218e8f93b1: Pull complete 
7acba7289aa3: Pull complete 
Digest: sha256:aeded0f2a861747f43a01cf1018cf9efe2bdd02afd57d2b11fcc7fcadc16ccd1
Status: Downloaded newer image for nginx:latest
c6970c0f854135f75998ed1bdc0c7cc2ebea86acd3fe02451063cde641b8a4d1

3.查找 Docker Hub 上的 nginx 镜像
[root@localhost ~]# docker search nginx
NAME                              DESCRIPTION                                     STARS               OFFICIAL            AUTOMATED
nginx                             Official build of Nginx.                        12037               [OK]                
jwilder/nginx-proxy               Automated Nginx reverse proxy for docker con…   1671                                    [OK]
richarvey/nginx-php-fpm           Container running Nginx + PHP-FPM capable of…   742                                     [OK]
linuxserver/nginx                 An Nginx container, brought to you by LinuxS…   78                                      
bitnami/nginx                     Bitnami nginx Docker Image                      71                                      [OK]
tiangolo/nginx-rtmp               Docker image with Nginx using the nginx-rtmp…   56                                      [OK]
nginxdemos/hello                  NGINX webserver that serves a simple page co…   29                                      [OK]
jlesage/nginx-proxy-manager       Docker container for Nginx Proxy Manager        24                                      [OK]
jc21/nginx-proxy-manager          Docker container for managing Nginx proxy ho…   24                                      
nginx/nginx-ingress               NGINX Ingress Controller for Kubernetes         22                                      
privatebin/nginx-fpm-alpine       PrivateBin running on an Nginx, php-fpm & Al…   18                                      [OK]
schmunk42/nginx-redirect          A very simple container to redirect HTTP tra…   17                                      [OK]
blacklabelops/nginx               Dockerized Nginx Reverse Proxy Server.          12                                      [OK]
centos/nginx-18-centos7           Platform for running nginx 1.8 or building n…   11                                      
centos/nginx-112-centos7          Platform for running nginx 1.12 or building …   10                                      
nginxinc/nginx-unprivileged       Unprivileged NGINX Dockerfiles                  9                                       
nginx/nginx-prometheus-exporter   NGINX Prometheus Exporter                       7                                       
sophos/nginx-vts-exporter         Simple server that scrapes Nginx vts stats a…   5                                       [OK]
1science/nginx                    Nginx Docker images that include Consul Temp…   5                                       [OK]
mailu/nginx                       Mailu nginx frontend                            4                                       [OK]
pebbletech/nginx-proxy            nginx-proxy sets up a container running ngin…   2                                       [OK]
travix/nginx                      NGinx reverse proxy                             2                                       [OK]
ansibleplaybookbundle/nginx-apb   An APB to deploy NGINX                          1                                       [OK]
centos/nginx-110-centos7          Platform for running nginx 1.10 or building …   0                                       
wodby/nginx                       Generic nginx                                   0                                       [OK]

4.拉取官方的镜像
[root@localhost ~]# docker pull nginx
Using default tag: latest
latest: Pulling from library/nginx
Digest: sha256:aeded0f2a861747f43a01cf1018cf9efe2bdd02afd57d2b11fcc7fcadc16ccd1
Status: Image is up to date for nginx:latest
docker.io/library/nginx:latest

4.查到本地镜像列表里 REPOSITORY 为 nginx 的镜像
[root@localhost ~]# docker images nginx
REPOSITORY          TAG                 IMAGE ID            CREATED             SIZE
nginx               latest              f949e7d76d63        2 weeks ago         126MB

5.查看网卡信息(多了个docker0网卡)
[root@localhost ~]# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 00:0c:29:f2:3d:bf brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.3/24 brd 192.168.1.255 scope global noprefixroute ens33
       valid_lft forever preferred_lft forever
    inet6 fe80::9a8:d0da:266f:5ac7/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever
3: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default 
    link/ether 02:42:32:18:de:d4 brd ff:ff:ff:ff:ff:ff
    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
       valid_lft forever preferred_lft forever
    inet6 fe80::42:32ff:fe18:ded4/64 scope link 
       valid_lft forever preferred_lft forever

6.启动一个 Nginx 容器

[root@localhost ~]# docker run --name nginx_name -p 8081:80 -d nginx
cd5b2b7338504b1e0a5dc074b796e37b4959fd93ec5260c14f0b3284929c1396

nginx_name 容器名称设置不要使用-
the -d设置容器在在后台一直运行
the -p 端口进行映射,将本地 8081 端口映射到容器内部的 80 端口
7c82f5afa73e2d8d031ed95d109b4e1cd7e39292591a3dd9dd94caeb772079b1 为容器的 ID

[root@localhost ~]# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 00:0c:29:f2:3d:bf brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.3/24 brd 192.168.1.255 scope global noprefixroute ens33
       valid_lft forever preferred_lft forever
    inet6 fe80::9a8:d0da:266f:5ac7/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever
3: docker0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default 
    link/ether 02:42:32:18:de:d4 brd ff:ff:ff:ff:ff:ff
    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
       valid_lft forever preferred_lft forever
    inet6 fe80::42:32ff:fe18:ded4/64 scope link 
       valid_lft forever preferred_lft forever
19: vethd3e3ef9@if18: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master docker0 state UP group default 
    link/ether 82:2d:54:0d:34:da brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet6 fe80::802d:54ff:fe0d:34da/64 scope link 
       valid_lft forever preferred_lft forever

7.查找nginx运行进程信息
[root@localhost ~]# docker ps|grep nginx
cd5b2b733850        nginx               "nginx -g 'daemon of…"   About a minute ago   Up About a minute   0.0.0.0:8081->80/tcp   runoob-nginx-test

[root@localhost ~]# docker top nginx_name
UID                 PID                 PPID                C                   STIME               TTY                 TIME                CMD
root                17118               17101               0                   03:10               ?                   00:00:00            nginx: master process nginx -g daemon off;
101                 17167               17118               0                   03:11               ?                   00:00:00            nginx: worker process

[root@localhost ~]#  ps -ef | grep nginx
root      17118  17101  0 03:10 ?        00:00:00 nginx: master process nginx -g daemon off;
101       17167  17118  0 03:11 ?        00:00:00 nginx: worker process
root      17360  10468  0 03:13 pts/0    00:00:00 grep --color=auto nginx

8.查看Docker进程
列出所有在运行的容器信息
CONTAINER ID        IMAGE               COMMAND                  CREATED             STATUS              PORTS                  NAMES
cd5b2b733850        nginx               "nginx -g 'daemon of…"   5 minutes ago       Up 4 minutes        0.0.0.0:8081->80/tcp   nginx_name

9.列出最近创建的5个容器信息
[root@localhost ~]# docker ps -n 5
CONTAINER ID        IMAGE               COMMAND                  CREATED             STATUS              PORTS                  NAMES
cd5b2b733850        nginx               "nginx -g 'daemon of…"   5 minutes ago       Up 5 minutes        0.0.0.0:8081->80/tcp   nginx_name

10.列出所有创建的容器ID
[root@localhost ~]# docker ps -a -q                    
cd5b2b733850

11.确认使用 overlay2 使用存储驱动程序
[root@localhost ~]# ls -lh /var/lib/docker/image/
total 0
drwx------ 5 root root 81 Oct 10 02:05 overlay2

12.查看overlay2目录
[root@localhost ~]# tree -L 2 /var/lib/docker/image/overlay2/
/var/lib/docker/image/overlay2/
├── distribution
│   ├── diffid-by-digest
│   └── v2metadata-by-diffid
├── imagedb
│   ├── content
│   └── metadata
├── layerdb
│   ├── mounts
│   ├── sha256
│   └── tmp
└── repositories.json

10 directories, 1 file

13.停止 nginx_name
[root@localhost ~]# docker stop nginx_name
nginx_name

14.删除 nginx_name 容器
[root@localhost ~]# docker  rm nginx_name 
nginx_name

15.删除后查看网卡信息
[root@localhost ~]# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 00:0c:29:f2:3d:bf brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.3/24 brd 192.168.1.255 scope global noprefixroute ens33
       valid_lft forever preferred_lft forever
    inet6 fe80::9a8:d0da:266f:5ac7/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever
3: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default 
    link/ether 02:42:32:18:de:d4 brd ff:ff:ff:ff:ff:ff
    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
       valid_lft forever preferred_lft forever
    inet6 fe80::42:32ff:fe18:ded4/64 scope link 
       valid_lft forever preferred_lft forever

15.切换普通用户wwweee000
[root@localhost ~]# su wwweee000
[wwweee000@localhost root]$ cd
[wwweee000@localhost ~]$ docker run --name nginx_name_wwweee000 -p 8082:80 -d nginx 
79f9741f257ac4fc8079b4283d9830cec8d2a5d85fde530bf08aec3f5a1970a3
[wwweee000@localhost ~]$ docker ps |grep nginx_name_wwweee000
79f9741f257a        nginx               "nginx -g 'daemon of…"   About a minute ago   Up About a minute   0.0.0.0:8082->80/tcp   nginx_name_wwweee000
[wwweee000@localhost ~]$ docker ps
CONTAINER ID        IMAGE               COMMAND                  CREATED             STATUS              PORTS                  NAMES
79f9741f257a        nginx               "nginx -g 'daemon of…"   2 minutes ago       Up 2 minutes        0.0.0.0:8082->80/tcp   nginx_name_wwweee000
ae4026623f4a        nginx               "nginx -g 'daemon of…"   6 minutes ago       Up 6 minutes        0.0.0.0:8081->80/tcp   nginx_name
[wwweee000@localhost ~]$ ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 00:0c:29:f2:3d:bf brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.3/24 brd 192.168.1.255 scope global noprefixroute ens33
       valid_lft forever preferred_lft forever
    inet6 fe80::9a8:d0da:266f:5ac7/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever
3: docker0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default 
    link/ether 02:42:32:18:de:d4 brd ff:ff:ff:ff:ff:ff
    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0
       valid_lft forever preferred_lft forever
    inet6 fe80::42:32ff:fe18:ded4/64 scope link 
       valid_lft forever preferred_lft forever
27: vethb5b02c6@if26: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master docker0 state UP group default 
    link/ether 2e:82:6a:01:a6:a5 brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet6 fe80::2c82:6aff:fe01:a6a5/64 scope link 
       valid_lft forever preferred_lft forever
29: veth13521f0@if28: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master docker0 state UP group default 
    link/ether 22:d1:38:0a:0f:3d brd ff:ff:ff:ff:ff:ff link-netnsid 1
    inet6 fe80::20d1:38ff:fe0a:f3d/64 scope link 
       valid_lft forever preferred_lft forever

16.普通用户也可以停止root用户docker容器
[wwweee000@localhost ~]$ docker stop nginx_name
nginx_name
[wwweee000@localhost ~]$ docker ps
CONTAINER ID        IMAGE               COMMAND                  CREATED             STATUS              PORTS                  NAMES
79f9741f257a        nginx               "nginx -g 'daemon of…"   4 minutes ago       Up 4 minutes        0.0.0.0:8082->80/tcp   nginx_name_wwweee000
[wwweee000@localhost ~]$ docker restart nginx_name
nginx_name
[wwweee000@localhost ~]$ docker ps
CONTAINER ID        IMAGE               COMMAND                  CREATED             STATUS              PORTS                  NAMES
79f9741f257a        nginx               "nginx -g 'daemon of…"   12 minutes ago      Up 12 minutes       0.0.0.0:8082->80/tcp   nginx_name_wwweee000
ae4026623f4a        nginx               "nginx -g 'daemon of…"   16 minutes ago      Up 12 seconds       0.0.0.0:8081->80/tcp   nginx_name

docker ps // 查看所有正在运行容器
docker stop containerId // containerId 是容器的ID

docker ps -a // 查看所有容器
docker ps -a -q // 查看所有容器ID

docker stop $(docker ps -a -q) // stop停止所有容器
docker  rm $(docker ps -a -q) // remove删除所有容器

docker kill 容器ID或容器名 //直接关闭容器


17.设置用户管理root用户组的容器进行操作(参考)
https://www.jb51.net/article/149430.htm

 

 

 

 

 

posted @ 2019-10-10 13:30  wwweee000  阅读(1873)  评论(0编辑  收藏  举报