一、docker概述
1.1 docker要解决的问题
- 将开发的项目和环境(环境包括redis,mysql,jdk等)一块打包,免除重复配置环境的问题。
- docker通过隔离机制,将服务器的资源运用到极致。隔离是docker的核心思想。
1.2 docker历史
- docker十分轻巧,占用资源少
- docker是基于go语言开发的
- docker的网址:https://www.docker.com/
1.3 docker能干什么
- docker是一种容器化技术。
- docker并不是模拟一个完成的操作系统。
1.4 docker与虚拟机技术的不同
- 虚拟机虚拟出一套硬件,运行完成的操作系统,在系统上安装运行软件。
- 容器运行在宿主机的内核中,容器没有自己的内核,没有虚拟硬件,比较轻便。
- 容器间是隔离的,每个容器都有自己的文件存储系统,互不影响。
- docker是内核级别的虚拟化。
二、docker安装
2.1 docker基本概念
-
镜像
docker镜像就好比一个模板,通过镜像可以创建多个容器。 -
容器
容器通过docker镜像创建,具有启动、停止、删除基本命令。可以把docker镜像理解为一个简易的Linux系统。 -
仓库
仓库是用来存储镜像的地方。
2.2 docker安装
环境查看
- Linux系统内核是3.10版本以上
[root@iZwz939qj61dxuoca8vryhZ home]# uname -r
3.10.0-1160.49.1.el7.x86_64
- 本例Linux操作系统是centos7
[root@iZwz939qj61dxuoca8vryhZ home]# cat /etc/os-release
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/"
BUG_REPORT_URL="https://bugs.centos.org/"
CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="7"
安装
- 卸载系统中原有的docker
yum remove docker \
docker-client \
docker-client-latest \
docker-common \
docker-latest \
docker-latest-logrotate \
docker-logrotate \
docker-engine
- 安装yum包
yum install -y yum-utils
- 配置docker的阿里云安装镜像地址
yum-config-manager \
--add-repo \
http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo
- 更新yum软件包索引
yum makecache fast
- 安装docker社区版本engine,社区版
yum install docker-ce docker-ce-cli containerd.io
- 启动docker
systemctl start docker
- 查看docker版本
docker version
- 允许hello-world程序
docker run hello-world
- 查看docker中下载的hello-world镜像
docker images
卸载docker
- 卸载docker依赖
yum remove docker-ce docker-ce-cli containerd.io
- 删除docker文件夹
rm -rf /var/lib/docker
rm -rf /var/lib/containerd
2.3 docker中run命令的流程分析图
三、docker底层原理
3.1 docker是怎么工作的
- docker是client-server架构的系统,docker的守护进程运行在主机上。通过socket从客户端访问。
- Docker-Server接收到Docker-Client的指令,就会执行这个指令。
3.2 docker为什么比VM快?
- docker比虚拟机有更少的抽象层
- docker利用的是宿主机的内核,虚拟机需要Guest OS。新建一个容器的时候,docker不需要像虚拟机一样重新加载一个操作系统,避免引导。虚拟机是加载Guest OS,分钟级别的。docker利用宿主机的操作系统,省略了引导过程,是秒级别。
四、docker常用命令
4.1 帮助命令
- 打印docker的版本信息
docker version
- 显示docker更加详细的信息,包括镜像和容器
docker info
- docker命令的帮助文档
docker COMMAND --help
4.2 镜像命令
- 查看本地主机上的所有镜像
docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
hello-world latest feb5d9fea6a5 4 months ago 13.3kB
#解释
REPOSITORY :docker的仓库源
TAG:镜像的标签
IMAGE ID:镜像的ID
CREATED:镜像的创建时间
SIZE:镜像的大小
- 查看docker images的详细使用方法
docker images --help
- 查看本机上的所有镜像
docker images -a
- 只查看镜像的ID
docker images -q
- 搜索Mysql镜像
docker search mysql
- 按过滤条件搜索STARS大于3000的MySQL镜像
docker search mysql -f=STARS=3000
4.3 docker pull命令下载镜像
- 查看docker pull的帮助命令
docker pull --help
- 下载最新版MySQL镜像
[root@iZwz939qj61dxuoca8vryhZ ~]# docker pull mysql
Using default tag: latest #如果不指定tag,默认是最新版本的mysql
latest: Pulling from library/mysql
6552179c3509: Pull complete #分层下载,docker镜像的核心,联合文件系统
d69aa66e4482: Pull complete
3b19465b002b: Pull complete
7b0d0cfe99a1: Pull complete
9ccd5a5c8987: Pull complete
2dab00d7d232: Pull complete
64d3afdccd4a: Pull complete
82148d50b16c: Pull complete
8bb7d73a7d0c: Pull complete
74778cd68a75: Pull complete
d7e5f9309140: Pull complete
f2e376ecd59f: Pull complete
Status: Downloaded newer image for mysql:latest
docker.io/library/mysql:latest #MySQL镜像的真实地址
- 下载MySQL5.7版本镜像
docker pull mysql:5.7
- 删除指定ID的镜像
4.4 docker rmi删除镜像
- 删除指定ID的镜像
docker rmi -f 0712d5dc1b14
- 删除全部镜像
docker rmi -f $(docker images -aq)
五、容器命令
- 有了镜像,才可以创建容器,下载centos镜像,测试学习
5.1 新建centos容器,并启动
- 下载centos容器
docker pull centos
- 进入到docker镜像中的centos系统
[root@iZwz939qj61dxuoca8vryhZ ~]# docker run -it centos
[root@330e2aa2fee4 /]# ls #查看容器内的centos系统
bin dev etc home lib lib64 lost+found media mnt opt proc root run sbin srv sys tmp usr var
-it:交互形式
- 退出docker镜像中的centos系统
exit
5.2 docker ps命令
- 查看正在运行的容器docker ps
docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
- 列出曾经运行的docker容器,docker ps -a
-a, --all Show all containers (default shows just running)
[root@iZwz939qj61dxuoca8vryhZ ~]# docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
330e2aa2fee4 centos "/bin/bash" 17 minutes ago Exited (0) 9 minutes ago relaxed_chatterjee
98973b67bacd feb5d9fea6a5 "/hello" 28 hours ago Exited (0) 28 hours ago vibrant_euclid
- 列出所有运行过的docker容器,指定列出容器的数量,docker ps -a -n=1
-n, --last int Show n last created containers (includes all states) (default -1)
ps List containers
[root@iZwz939qj61dxuoca8vryhZ ~]# docker ps -a -n=1
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
330e2aa2fee4 centos "/bin/bash" 25 minutes ago Exited (0) 16 minutes ago relaxed_chatterjee
- 显示所有容器的编号,docker ps -aq
-q, --quiet Only display container IDs
[root@iZwz939qj61dxuoca8vryhZ ~]# docker ps -aq
330e2aa2fee4
98973b67bacd
5.3 退出容器
exit #直接退出容器并停止容器
Ctrl+P+Q #退出容器,不停止容器
5.4 删除容器
- 删除指定ID的docker容器,docker rm,不能删除正在运行的docker容器
docker rm 1b66de204265
- 强制删除所有容器,包括正在运行的容器,docker rm -f $(docker ps -aq)
-f, --force Force the removal of a running container (uses SIGKILL)
[root@iZwz939qj61dxuoca8vryhZ ~]# docker rm -f $(docker ps -aq)
09c69bf5bb7e
c355b3da2fed
330e2aa2fee4
98973b67bacd
- docker ps -a -q | xargs docker rm,也是一个删除所有容器的命令
5.5 启动和停止容器
docker start 容器ID #启动容器
docker stop 容器ID #停止容器
docker restart 容器ID #重启容器
docker kill 容器ID #杀掉容器
5.6 常用的其它命令
-
docker run -d centos
后台启动容器,启动完成之后,返回容器ID。
-d, --detach Run container in background and print container ID
问题,docker ps 之后,发现centos停止了。
常见的坑,docker容器使用后台运行,必须要有一个前台进程,docker发现没有前台应用,就会停止。
容器启动后,发现自己没有提供服务,就会停止。 -
查看docker日志
docker run -d centos /bin/sh -c "while true;do echo kuangshen;sleep 2;done"
后台运行centos镜像。并且每隔2秒打印一次数据。
docker logs -ft --tail 10 d24b14facca6242cd8399790e34fb4233349c7cd133b4ee6bc212dc9d7a83e48
查看centos容器中的日志。
-f, --follow Follow log output
-t, --timestamps Show timestamps
–tail string Number of lines to show from the end of the logs (default “all”)
- 查看docker容器内部进程的基本信息
top Display the running processes of a container
[root@iZwz939qj61dxuoca8vryhZ ~]# docker top d24b14facca6
UID PID PPID C STIME TTY TIME CMD
root 22845 22828 0 20:28 ? 00:00:00 /bin/sh -c while true;do echo kuangshen;sleep 2;done
root 23427 22845 0 20:44 ? 00:00:00 /usr/bin/coreutils --coreutils-prog-shebang=sleep /usr/bin/sleep 2
- 查看镜像的元数据
inspect Return low-level information on Docker objects
[root@iZwz939qj61dxuoca8vryhZ ~]# docker inspect d24b14facca6
[
{
"Id": "d24b14facca6242cd8399790e34fb4233349c7cd133b4ee6bc212dc9d7a83e48",
"Created": "2022-02-03T12:28:24.100412417Z",
"Path": "/bin/sh",
"Args": [
"-c",
"while true;do echo kuangshen;sleep 2;done"
],
"State": {
"Status": "running",
"Running": true,
"Paused": false,
"Restarting": false,
"OOMKilled": false,
"Dead": false,
"Pid": 22845,
"ExitCode": 0,
"Error": "",
"StartedAt": "2022-02-03T12:28:24.487684662Z",
"FinishedAt": "0001-01-01T00:00:00Z"
},
"Image": "sha256:5d0da3dc976460b72c77d94c8a1ad043720b0416bfc16c52c45d4847e53fadb6",
"ResolvConfPath": "/var/lib/docker/containers/d24b14facca6242cd8399790e34fb4233349c7cd133b4ee6bc212dc9d7a83e48/resolv.conf",
"HostnamePath": "/var/lib/docker/containers/d24b14facca6242cd8399790e34fb4233349c7cd133b4ee6bc212dc9d7a83e48/hostname",
"HostsPath": "/var/lib/docker/containers/d24b14facca6242cd8399790e34fb4233349c7cd133b4ee6bc212dc9d7a83e48/hosts",
"LogPath": "/var/lib/docker/containers/d24b14facca6242cd8399790e34fb4233349c7cd133b4ee6bc212dc9d7a83e48/d24b14facca6242cd8399790e34fb4233349c7cd133b4ee6bc212dc9d7a83e48-json.log",
"Name": "/epic_curran",
"RestartCount": 0,
"Driver": "overlay2",
"Platform": "linux",
"MountLabel": "",
"ProcessLabel": "",
"AppArmorProfile": "",
"ExecIDs": null,
"HostConfig": {
"Binds": null,
"ContainerIDFile": "",
"LogConfig": {
"Type": "json-file",
"Config": {}
},
"NetworkMode": "default",
"PortBindings": {},
"RestartPolicy": {
"Name": "no",
"MaximumRetryCount": 0
},
"AutoRemove": false,
"VolumeDriver": "",
"VolumesFrom": null,
"CapAdd": null,
"CapDrop": null,
"CgroupnsMode": "host",
"Dns": [],
"DnsOptions": [],
"DnsSearch": [],
"ExtraHosts": null,
"GroupAdd": null,
"IpcMode": "private",
"Cgroup": "",
"Links": null,
"OomScoreAdj": 0,
"PidMode": "",
"Privileged": false,
"PublishAllPorts": false,
"ReadonlyRootfs": false,
"SecurityOpt": null,
"UTSMode": "",
"UsernsMode": "",
"ShmSize": 67108864,
"Runtime": "runc",
"ConsoleSize": [
0,
0
],
"Isolation": "",
"CpuShares": 0,
"Memory": 0,
"NanoCpus": 0,
"CgroupParent": "",
"BlkioWeight": 0,
"BlkioWeightDevice": [],
"BlkioDeviceReadBps": null,
"BlkioDeviceWriteBps": null,
"BlkioDeviceReadIOps": null,
"BlkioDeviceWriteIOps": null,
"CpuPeriod": 0,
"CpuQuota": 0,
"CpuRealtimePeriod": 0,
"CpuRealtimeRuntime": 0,
"CpusetCpus": "",
"CpusetMems": "",
"Devices": [],
"DeviceCgroupRules": null,
"DeviceRequests": null,
"KernelMemory": 0,
"KernelMemoryTCP": 0,
"MemoryReservation": 0,
"MemorySwap": 0,
"MemorySwappiness": null,
"OomKillDisable": false,
"PidsLimit": null,
"Ulimits": null,
"CpuCount": 0,
"CpuPercent": 0,
"IOMaximumIOps": 0,
"IOMaximumBandwidth": 0,
"MaskedPaths": [
"/proc/asound",
"/proc/acpi",
"/proc/kcore",
"/proc/keys",
"/proc/latency_stats",
"/proc/timer_list",
"/proc/timer_stats",
"/proc/sched_debug",
"/proc/scsi",
"/sys/firmware"
],
"ReadonlyPaths": [
"/proc/bus",
"/proc/fs",
"/proc/irq",
"/proc/sys",
"/proc/sysrq-trigger"
]
},
"GraphDriver": {
"Data": {
"LowerDir": "/var/lib/docker/overlay2/417b1dc655f9f638125e2168ff347df77fbef5a6e47281abd1f2878213907c75-init/diff:/var/lib/docker/overlay2/8acd58b1e12b5d070384970155213230ea77879ac090116fd427c05782e92050/diff",
"MergedDir": "/var/lib/docker/overlay2/417b1dc655f9f638125e2168ff347df77fbef5a6e47281abd1f2878213907c75/merged",
"UpperDir": "/var/lib/docker/overlay2/417b1dc655f9f638125e2168ff347df77fbef5a6e47281abd1f2878213907c75/diff",
"WorkDir": "/var/lib/docker/overlay2/417b1dc655f9f638125e2168ff347df77fbef5a6e47281abd1f2878213907c75/work"
},
"Name": "overlay2"
},
"Mounts": [],
"Config": {
"Hostname": "d24b14facca6",
"Domainname": "",
"User": "",
"AttachStdin": false,
"AttachStdout": false,
"AttachStderr": false,
"Tty": false,
"OpenStdin": false,
"StdinOnce": false,
"Env": [
"PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
],
"Cmd": [
"/bin/sh",
"-c",
"while true;do echo kuangshen;sleep 2;done"
],
"Image": "centos",
"Volumes": null,
"WorkingDir": "",
"Entrypoint": null,
"OnBuild": null,
"Labels": {
"org.label-schema.build-date": "20210915",
"org.label-schema.license": "GPLv2",
"org.label-schema.name": "CentOS Base Image",
"org.label-schema.schema-version": "1.0",
"org.label-schema.vendor": "CentOS"
}
},
"NetworkSettings": {
"Bridge": "",
"SandboxID": "67772ae387ac7496c81892681f8a78f3ce81e83b08817b39746397fb4605621a",
"HairpinMode": false,
"LinkLocalIPv6Address": "",
"LinkLocalIPv6PrefixLen": 0,
"Ports": {},
"SandboxKey": "/var/run/docker/netns/67772ae387ac",
"SecondaryIPAddresses": null,
"SecondaryIPv6Addresses": null,
"EndpointID": "300747945ec52407b25056ede4e7e3838e481a866d1df8d789b1c45c75a66f8c",
"Gateway": "172.18.0.1",
"GlobalIPv6Address": "",
"GlobalIPv6PrefixLen": 0,
"IPAddress": "172.18.0.2",
"IPPrefixLen": 16,
"IPv6Gateway": "",
"MacAddress": "02:42:ac:12:00:02",
"Networks": {
"bridge": {
"IPAMConfig": null,
"Links": null,
"Aliases": null,
"NetworkID": "8188070c03cf3ca6405b6f621911701cfc721c9f54cd7ce6a9761cfba820d2c7",
"EndpointID": "300747945ec52407b25056ede4e7e3838e481a866d1df8d789b1c45c75a66f8c",
"Gateway": "172.18.0.1",
"IPAddress": "172.18.0.2",
"IPPrefixLen": 16,
"IPv6Gateway": "",
"GlobalIPv6Address": "",
"GlobalIPv6PrefixLen": 0,
"MacAddress": "02:42:ac:12:00:02",
"DriverOpts": null
}
}
}
}
]
六、进入当前正在运行中的容器
6.1 docker exec -it 容器ID
容器都是后台方式运行,需要进入容器修改配置。
exec Run a command in a running container
-i, --interactive Keep STDIN open even if not attached
-t, --tty Allocate a pseudo-TTY
-it:以交互方式运行
docker exec -it d24b14facca6 /bin/sh
sh-4.4# ls
bin dev etc home lib lib64 lost+found media mnt opt proc root run sbin srv sys tmp usr var
sh-4.4#
6.2 docker attach 容器ID
进入到容器中正在执行的命令行
6.3 docker attach 与docker exec区别
- docker exec:进入容器后,开启一个新的终端,可以在终端中输入命令。
- docker attach:进入容器正在执行的终端,不会打开新的终端。
七、从容器内拷贝文件到主机上
cp Copy files/folders between a container and the local filesystem
[root@iZwz939qj61dxuoca8vryhZ home]# docker cp 7d04b3d019f3:/home/text.java /home
[root@iZwz939qj61dxuoca8vryhZ home]# ls
text.java
- docker cp 容器DI:容器中路径 本机路径
七、小结
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
