Introduction to Docker

Jason Shepherd, Docker Meetup Brisbane

What is Docker?


Lightweight container

Storage for containers

Images for building containers

Repository for images


Why Docker?



Make the entire lifecycle more efficient, consistent, and repeatable

Eliminate inconsistencies between

environments

Address significant performance, costs, deployment, and portability issues normally

associated with VMs


Demo: Creating a container


sudo docker run -i -t fedora /bin/bashbash-4.2#

Run /bin/bash using the fedora image and use my current shell to access it.


Show the running containers

sudo docker ps

CONTAINER ID IMAGE COMMAND eed6e1011af4 fedora:20 /bin/bash


Demo: Saving your changes


sudo docker run -i -t fedora /bin/bashbash-4.2# yum install -y httpdbash-4.2# exit

sudo docker run -i -t fedora /bin/bashbash-4.2# rpm -ql httpdPackage httpd is not installed


sudo docker ps CONTAINER ID IMAGE COMMAND

123e61a0108d fedora:20 /bin/bash

sudo docker commit 123e61a0108d fedora-local8a4a4c6445b...

sudo docker imagesREPOSITORY TAG IMAGE

fedora-local latest 8a4a4c64495b


Demo:Access a container via the Network


Run Apache in the forground:/usr/sbin/httpd

-DFOREGROUND


Bind a port on the host(8080) to a container port(80)

sudo docker run -p 0.0.0.0:8080:80 -t a0cd983109bc /usr/sbin/httpd -DFOREGROUND


Hit it with your browser:

http://localhost:8080/


Docker is not production ready:

- All system calls available- Can mount file system of host

- Can access process of container from host


How to deal with Security issues:

- Treat docker as you would sudo- Trust the images you run, they have root access

- Don't allow remote access to docker!

Documents

Introduction to Docker