标签:docker
安装docker下载官方yum源
[root@lynn-04 ~]# curl https://download.docker.com/linux/centos/docker-ce.repo -o /etc/yum.repos.d/docker.repo
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 2568 100 2568 0 0 2562 0 0:00:01 0:00:01 --:--:-- 2565安装docker
[root@lynn-04 ~]# yum install -y docker-ce启动docker 会自动生成一下iptables规则
[root@lynn-04 ~]# systemctl start docker
[root@lynn-04 ~]# ps aux|grep docker
root 1970 1.5 6.0 607388 60772 ? Ssl 19:47 0:00 /usr/bin/dockerd
root 1977 0.5 2.0 374948 20272 ? Ssl 19:47 0:00 docker-containerd --config /var/run/docker/containerd/containerd.toml
root 2095 0.0 0.0 112676 984 pts/0 S+ 19:48 0:00 grep --color=auto docker
[root@lynn-04 ~]# iptables -nvL
Chain INPUT (policy ACCEPT 70 packets, 4656 bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DOCKER-USER all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 DOCKER-ISOLATION all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT all -- * docker0 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
0 0 DOCKER all -- * docker0 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT all -- docker0 !docker0 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT all -- docker0 docker0 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 41 packets, 4028 bytes)
pkts bytes target prot opt in out source destination
Chain DOCKER (1 references)
pkts bytes target prot opt in out source destination
Chain DOCKER-ISOLATION (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
Chain DOCKER-USER (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- * * 0.0.0.0/0 0.0.0.0/0
[root@lynn-04 ~]# iptables -t nat -nvL
Chain PREROUTING (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DOCKER all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type LOCAL
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 1 packets, 76 bytes)
pkts bytes target prot opt in out source destination
0 0 DOCKER all -- * * 0.0.0.0/0 !127.0.0.0/8 ADDRTYPE match dst-type LOCAL
Chain POSTROUTING (policy ACCEPT 1 packets, 76 bytes)
pkts bytes target prot opt in out source destination
0 0 MASQUERADE all -- * !docker0 172.17.0.0/16 0.0.0.0/0
Chain DOCKER (2 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- docker0 * 0.0.0.0/0 0.0.0.0/0配置一个镜像加速
[root@lynn-04 ~]# vim /etc/docker/daemon.json
{
"registry-mirrors": ["https://*************.mirror.aliyuncs.com"] #阿里云申请镜像加速器
}下载centos镜像 docker pull centos
[root@lynn-04 ~]# docker pull centos
Using default tag: latest
latest: Pulling from library/centos
469cfcc7a4b3: Pull complete
Digest: sha256:989b936d56b1ace20ddf855a301741e52abca38286382cba7f44443210e96d16
Status: Downloaded newer image for centos:latestdocker images 查看本地的镜像
[root@lynn-04 ~]# docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
centos latest e934aafc2206 2 weeks ago 199MBdocker search xxx 搜索镜像,其中xxx是关键词
[root@lynn-04 ~]# docker search jumpserver
NAME DESCRIPTION STARS OFFICIAL AUTOMATED
jiaxiangkong/jumpserver_docker 开源跳板机(堡垒机):认证,授权,审计,自动化运维 10
jumpserver/jumpserver 7
hhding/jumpserver-docker ssh proxy node 3 [OK]
njqaaa/jumpserver jumpserver 1 [OK]
jumpserver/guacamole guacamole for jumpserver 1 [OK]
kubernetesio/sshd-jumpserver sshd-jumpserver 0 [OK]
satoms/jumpserver 0
zqiannnn/jumpserver-ansible JumpServer Ansible Addon 0 [OK]
jumpserver/allinone jumpserver all in one 0 [OK]
jumpserver/coco 0
jumpserver/luna 0
jumpserver/python 0
zsjohny/jumpserver bastion web ui 0 [OK]
qiwihui/jumpserver jumpserver docker 0 [OK]
vikings/jumpserver 0
qq58945591/jumpserver JumpServer集成coco和luna,使用nginx进行反向代… 0 [OK]
ibuler/jumpserver 0
lc13579443/jumpserver Jumpserver all in one Dockerfile 0 [OK]
jumpserver/core Jumpserver Official Docker Image 0 [OK]
jumpserver/base-env-alpine 0
oliver891001/jumpserver 0
henryzhang1/jumpserver 0
jiaxiangkong/jumpserver JMS 0
hfdend/jumpserver 0
zhangkun/jumpserver 0docker tag centos lynn_centos 给镜像打标签
[root@lynn-04 ~]# docker tag centos lynn_centos
[root@lynn-04 ~]# docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
ubuntu latest c9d990395902 10 days ago 113MB
centos latest e934aafc2206 2 weeks ago 199MB
lynn_centos latest e934aafc2206 2 weeks ago 199MB
[root@lynn-04 ~]# docker tag centos lynn_centos:321
[root@lynn-04 ~]# docker tag centos lynn_centos:123
[root@lynn-04 ~]# docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
ubuntu latest c9d990395902 10 days ago 113MB
lynn_centos 123 e934aafc2206 2 weeks ago 199MB
lynn_centos 321 e934aafc2206 2 weeks ago 199MB
lynn_centos latest e934aafc2206 2 weeks ago 199MB
centos latest e934aafc2206 2 weeks ago 199MBdocker run -itd centos 把镜像启动为容器,-i表示让容器的标准输入打开,-t表示分配一个伪终端,-d表示后台启动,要把-i -t -d 放到镜像名字前面
[root@lynn-04 ~]# docker run -itd centos
7482327f9578924eb8a6232f7262a385a150d9815540754089664b2622a11e95docker ps 查看运行的容器,加上-a选项后可以查看所有容器,包括未运行的
[root@lynn-04 ~]# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
7482327f9578 centos "/bin/bash" 7 seconds ago Up 6 seconds musing_lewindocker rmi centos 用来删除指定镜像, 其中后面的参数可以是tag,如果是tag时,实际上是删除该tag。当后面的参数为镜像ID时,则会彻底删除整个镜像,所有标签也会一同删除
[root@lynn-04 ~]# docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
ubuntu latest c9d990395902 10 days ago 113MB
centos latest e934aafc2206 2 weeks ago 199MB
lynn_centos 123 e934aafc2206 2 weeks ago 199MB
lynn_centos 321 e934aafc2206 2 weeks ago 199MB
lynn_centos latest e934aafc2206 2 weeks ago 199MB
[root@lynn-04 ~]# docker rmi lynn_centos:321
Untagged: lynn_centos:321
[root@lynn-04 ~]# docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
ubuntu latest c9d990395902 10 days ago 113MB
centos latest e934aafc2206 2 weeks ago 199MB
lynn_centos 123 e934aafc2206 2 weeks ago 199MB
lynn_centos latest e934aafc2206 2 weeks ago 199MB标签:docker
原文地址:http://blog.51cto.com/10963213/2106962
