Docker

From Halfface
Jump to navigation Jump to search

install podman on fedora 21

Step 1: Install podman on Fedora 21

  • As a matter of best practice, we’ll update our packages:
yum update -y
  • Let’s install podman by installing the docker-io package:
yum -y install docker-io
  • Once the installation completes, we’ll need to start the podman daemon:
systemctl start docker
  • And finally, and optionally, let’s configure podman to start when the server boots:
systemctl enable docker
  • Step 2: Download a podman Container
podman pull marina/fedora21-i386

Step 3: Run a podman Container basic fedora container with a bash shell, we just run one command. podman run will run a command in a new container, -i attaches stdin and stdout, -t allocates a tty, and we’re using the standard fedora

podman run -i -t marina/fedora21-i386 /bin/bash

connect, or detach, from the shell without exiting use the escape sequence Ctrl-p + Ctrl-q.

sudo podman run -i -t -e DISPLAY=$DISPLAY -v /tmp/.X11-unix:/tmp/.X11-unix --rm marina/fedora21-i386 /bin/bash

Update image

sed -i 's/\$releasever/21/g;s/\$basearch/i386/g' /etc/yum.repos.d/*
yum clean all
yum -y update
yum -y install firefox
yum -y install https://www.halfface.se/jdk-8u40-linux-i586.rpm
alternatives --install /usr/bin/java java /usr/java/latest/jre/bin/java 200000
alternatives --install /usr/bin/javaws javaws /usr/java/latest/jre/bin/javaws 200000
alternatives --install /usr/lib/mozilla/plugins/libjavaplugin.so libjavaplugin.so /usr/java/latest/jre/lib/i386/libnpjp2.so 200000
alternatives --install /usr/lib64/mozilla/plugins/libjavaplugin.so libjavaplugin.so.x86_64 /usr/java/latest/jre/lib/amd64/libnpjp2.so 200000
ln -sf /usr/java/latest/jre/lib/i386/libnpjp2.so /etc/alternatives/libjavaplugin.so
yum -y install 'xorg-x11-fonts*'
*Search for images.
podman search fedora

attach container

List containers.

sudo podman ps
CONTAINER ID        IMAGE                        COMMAND             CREATED             STATUS              PORTS               NAMES
315ea401e287        marina/fedora21-i386:0.1.0   "/bin/bash"         About an hour ago   Up About an hour                        elated_nobel        

list all containers

podman ps -a
podman ps -a --no-trunc

Connect container

Reconnect process. When you do CTRL + c it will die.

sudo podman attach 315ea401e287

list images

sudo podman images

delete image

podman rmi 315ea401e287

delete container

podman container rm cc3f2ff51cab cd20b396a061

Connect to image

podman exec -it elated_nobel /bin/bash

logs

Look at log output from container.

podman logs some-guacamole
podman logs --follow 123141234

stop

Stop podman image.

podman stop 7bcf035e1a4e

start

Start podman image

podman start 7bcf035e1a4e

list ip address of container

podman inspect -f 'Template:Range.NetworkSettings.NetworksTemplate:.IPAddressTemplate:End' c7eec987a17b

If you want to see all settings

podman inspect e2f7a7e275d5

look at mounts

podman inspect -f ‘Template:.Mounts’ 79b9ab19ace0

Guess which container uses which ip.

podman ps 2>&1 | grep -v '^CONTAINER ID' | while read ID THE_REST ; do echo '***' $ID $THE_REST ; podman inspect $ID | grep '"5000"' ; done

install guacamole

Create a mysql database.

mysql ...

Start guacd

podman run --name some-guacd -d guacamole/guacd

Start guacamole

CREDS=guacamole ; podman run --name some-guacamole --link some-guacd:guacd -e MYSQL_DATABASE=${CREDS} -e MYSQL_HOSTNAME=172.17.0.1 -e MYSQL_PORT=3306 -e MYSQL_USER=${CREDS} -e MYSQL_PASSWORD=${CREDS} -d -p 8080:8080 guacamole/guacamole

List images

podman images

docker history image_name

name> will show the layers baked into an image.

podman history $image

docker version

Which version of podman are we running.

docker info

Information about docker

docker cp

Copy file in and out of podman image.

podman cp <containerId>:/file/path/in/container/file /host/local/path/file

create podman image based on centos 7

sudo podman run -i -t --name centos7 centos:7 /bin/bash

Create image from Dockerfile

podman build -t abjorklund/openshift_install .

List images

podman image ls

Create container from image. Mount $PWD on /root/src

podman run --rm -it -v $PWD:/root/src abjorklund/openshift_install

create podman image based on centor 7

sudo podman run -i -t --name centos7 centos:7 /bin/bash

Add mount to container

Commit existing image.

sudo podman commit d3c982e9e73e centos7_2021-04-05_12-33

Add mount to new container

sudo podman run -ti --mount type=bind,source=/opt/autopanopro/,target=/opt/autopanopro/ centos7_2021-04-05_12-33 /bin/bash

podman where are files stored

Which image is interesting.

[root@worker-1 ~]# podman ps -a
CONTAINER ID  IMAGE                                          COMMAND        CREATED       STATUS                     PORTS  NAMES
a1c2397ccd1a  registry.redhat.io/rhel8/support-tools:latest  /usr/bin/bash  3 months ago  Exited (0) 2 months ago           toolbox-root
6782eb51bb24  registry.redhat.io/rhel8/support-tools:latest  /usr/bin/bash  3 months ago  Exited (0) 22 minutes ago         toolbox-core
3a11d6bb76c9  registry.redhat.io/rhel8/support-tools:latest  /usr/bin/bash  5 months ago  Exited (0) 5 months ago           toolbox-

Where are files stored.

[root@worker-1 ~]# podman inspect 6782eb51bb24 | grep 02a2f9b0010d4232445bb8bbc42ac4848e3c768e814849c711c19685bd2f46ac
               "UpperDir": "/var/lib/containers/storage/overlay/02a2f9b0010d4232445bb8bbc42ac4848e3c768e814849c711c19685bd2f46ac/diff",
               "WorkDir": "/var/lib/containers/storage/overlay/02a2f9b0010d4232445bb8bbc42ac4848e3c768e814849c711c19685bd2f46ac/work"

docker login halfface.se

Log in to a podman registry.

podman login halfface.se

autostart

Make all podman images autostart.

podman update --restart unless-stopped $(docker ps -q)

become root

podman exec -it --user 0 8346d5e8df67e96e1df5ebd50cd4d526fa066a07e274e76ae3ddf7dbf7e30f6a /bin/bash

inspect

Describe

podman inspect minio_minio1_1

docker-compose pull

Pulls an image associated with a service defined in a docker-compose.yml, docker-compose.override.yml or docker-stack.yml file, but does not start containers based on those images.

docker-compose pull

docker-compose up

Bring up podman containers in detached mode.

docker-compose up -d

update variable

Find Container id.

podman ps -a --no-trunc

stop podman daemon and change container config in

/var/lib/docker/containers/[container-id]/config.json

Start container.

set proxy

mkdir -p /etc/systemd/system/docker.service.d/
echo '[Service]
Environment="HTTP_PROXY=http://proxy.int.redbridge.se:3128"
Environment="HTTPS_PROXY=http://proxy.int.redbridge.se:3128"
Environment="NO_PROXY=localhost,127.0.0.1"
' > /etc/systemd/system/docker.service.d/proxy.conf
systemctl daemon-reload
systemctl restart docker

push container to docker.io

# login to where your container should reside. And create repository. In this example halfface/rockylinux-toolbox on docker.io.
...
# Create Dockerfile that describe your wanted state.
# Specify the parent image from which we build
FROM rockylinux/rockylinux:9
# Prepare container to suite your needs.
RUN dnf -y install procps-ng iproute bind-utils && dnf clean all
...
# Clear crap from your local podman environment.
podman system prune -a -f
# Create container
podman build -t rockylinux-toolbox:v1 .
# Login to docker.io
podman login -u halfface -p "${PASSWORD}" docker.io/halfface/rockylinux-toolbox
# Tag image 
podman tag localhost/rockylinux-toolbox:v1 halfface/rockylinux-toolbox:v1
# Push container to docker.io/halfface/rockylinux-toolbox
podman push halfface/rockylinux-toolbox:v1
# Now you can start to use you container.

Search for tags.

podman search --list-tags rb-dreg03.int.redbridge.se/docker-common-env/rockylinux-9-common-env --limit 40

Run the container as $USER who has uid/gid 1111 on a hostname container-${HOSTNAME}.

podman run --user $USER --uidmap 1111:0:1 --uidmap 0:1:1111 -it -v $HOME:$HOME -h container-${HOSTNAME} rb-dreg03.int.redbridge.se/docker-common-env/rockylinux-9-common-env:latest

troubleshooting container

Network

github.com/nicolaka/netshoot
fedora:40

skopeo

Investigate container

skopeo inspect docker://docker.io/halfface/rockylinux-toolbox:latest | jq . | less