一键脚本部署:
| #curl -fsSL https://get.docker.com | bash -s docker –mirror aliyun | 阿里云 |
| #curl -sSL https://get.daocloud.io/docker | sh | daocloud |
系统级:
| systemctl enable docker | 开机自启动 |
| systemctl start docker | 运行 |
| systemctl restart docker | 重启 |
| systemctl status docker | 查看状态 |
| systemctl stop docker | 停止 |
| systemctl disable docker | 取消自启动 |
| #yum remove docker-ce | 删除安装包 |
| #rm -rf /var/lib/docker | 删除镜像、容器、配置文件等内容 |
Docker:
| #docker stop xxxxxx | 关闭进程 |
| #docker rm xxxxxx | 卸载进程 |
| #docker search xxxxxx | 查询应用包 |
| #docker pull xxxxxx | 拉取应用包 |
| #docker ps | 查看进程列表 |
| #docker images | 查看本地应用包列表 |
| #docker run xxxxxx | 运行一个Docker进程 |
通用参数:
| -d | 后台运行 |
| -p xxxx:xxxx | 外部系统端口:Docker内部端口 |
| –name=xxxxxx | docker标签名 |
| -v | -v /var/run/docker.sock:/var/run/docker.sock :把宿主机的Docker守护进程(Docker daemon)默认监听的Unix域套接字挂载到容器中; -v portainer_data:/data :把宿主机portainer_data数据卷挂载到容器/data目录; |
| –restart=always –restart=unless-stopped | –restart 标志会检查容器的退出代码,并据此来决定是否要重启容器,默认不会重启; –restart=always:自动重启该容器; |
防火墙操作:
| systemctl stop firewalld | 关闭防火墙 |
| systemctl disable firewalld systemctl disable firewalld.service | 关闭防火墙自启动 |
| systemctl enable firewalld systemctl enable firewalld.service | 打开防火墙自启动 |
| systemctl start firewalld | 启动进程 |
| #firewall-cmd –permanent –add-service=https #firewall-cmd –permanent –add-port=443/tcp #firewall-cmd –permanent –add-service=ipsec #firewall-cmd –permanent –add-masquerade | 增加防火墙放行策略 |
| #firewall-cmd –reload | 重启服务 |
| #firewall-cmd –list-all | 查看放行列表 |
| #cd /usr/lib/firewalld/services #nano ssh.xml | 端口组的XML列表路径 |
安装SMB支持扩展空间挂载:
| #yum install cifs-utils-y | 安装SMB支持 |
| #echo “mount -t cifs //1 /本地路径 -o username=docker,password=test1234”>>/etc/rc.local #chmod 777 /etc/rc.local #chmod -R 777 /etc/rc.d | 添加挂在SMB网盘到本机mount下 |
Docker运行应用命令收集:
| 先运行一个http的web控制台: #docker run -d -p 9000:9000 -p 9443:9443 –name=portainer –restart=always -v /var/run/docker.sock:/var/run/docker.sock -v portainer_data:/data cr.portainer.io/portainer/portainer-ce:2.11.1 –ssl #docker stop portainer #docker rm portainer web上传证书之后,再启动https的web端口(sslcert=ca证书,sslkey=私钥) #docker run -d -p 9443:9443 –name=portainer –restart=always -v /var/run/docker.sock:/var/run/docker.sock -v portainer_data:/data cr.portainer.io/portainer/portainer-ce:2.11.1 –ssl | 2.11.1版本的portainer直接HTTPS访问 sslcert=ca证书 sslkey=私钥 需要通过9443端口访问时才有效 |
| LibraSpeed : #docker run -d -p 9001:80 –restart=always adolfintel/speedtest openspeedtest == http+https : #docker run –restart=unless-stopped –name openspeedtest -d -p 9002:3000 -p 9003:3001 openspeedtest/latest html5-speedtest == 中文版加距离显示 #docker run -d -p 9004:80 –restart=always ilemonrain/html5-speedtest:alpine | 内网测速Web页 |
| 临时前台启动: #docker run -it –rm –name=iperf3-server -p 5201:5201 networkstatic/iperf3 -s 临时后台启动: #docker run -it –rm –name=iperf3-server -p 5201:5201 networkstatic/iperf3 -s -D Docker常驻: #docker run –name=iperf3-server -p 5201:5201 –restart=unless-stopped networkstatic/iperf3 -s #(ctrl+c) #docker start iperf3-server 客户端命令: #iperf3 -c 192.168.6.202 -t 30 | iperf3测速 |
| docker run -d -v /mnt…../sda1:/srv -v /mnt/sda1/filebrowserconfig.json:/etc/config.json -v /mnt/sda1/filebrowser/database.db:/etc/database.db -p 6262:80 –restart always filebrowser/filebrowser | filebrowser Web云盘系统 |
| #docker run –name some-wordpress –link some-mysql:mysql -p 80:80 -d wordpress name参数指定要启动的WordPress实例名称,link参数指定要使用的Docker MySQL实例名称,p参数将Docker内部的80端口映射到本地的8080端口上。 外部的mysql使用如下命令启动 docker run –name some-wordpress -e WORDPRESS_DB_HOST={mysql server IP}:3306 \ -e WORDPRESS_DB_USER=… -e WORDPRESS_DB_PASSWORD=… -d wordpress #docker run –name Blog -p 80:80 -e WORDPRESS_DB_HOST=172.17.0.1:3306 -e WORDPRESS_DB_USER=xjr -e WORDPRESS_DB_PASSWORD=xjr516548 -e WORDPRESS_DB_NAME=wp -d wordpress | WordPress |
| #docker run –name some-zabbix-server-mysql -e DB_SERVER_HOST=”some-mysql-server” -e MYSQL_USER=”some-user” -e MYSQL_PASSWORD=”some-password” -d zabbix/zabbix-server-mysql:tag #docker run –name zabbix -p 9002:80 -e DB_SERVER_HOST=”172.17.0.1″ -e MYSQL_USER=”xjr” -e MYSQL_PASSWORD=”xjr516548″ -d zabbix/zabbix-server-mysql:alpine-5.0-latest | Zabbix |
| #docker run -d –name music -p 8264:264 -v /root/music-player:/var/www/html/cache oldiy/music-player-docker | web-music播放神器 |
| docker run -d –name=netdata \ -p 19999:19999 \ -v netdataconfig:/etc/netdata \ -v netdatalib:/var/lib/netdata \ -v netdatacache:/var/cache/netdata \ -v /etc/passwd:/host/etc/passwd:ro \ -v /etc/group:/host/etc/group:ro \ -v /proc:/host/proc:ro \ -v /sys:/host/sys:ro \ -v /etc/os-release:/host/etc/os-release:ro \ –restart unless-stopped \ –cap-add SYS_PTRACE \ –security-opt apparmor=unconfined \ netdata/netdata #docker run -d –name=netdata -p 19999:19999 -v netdataconfig:/etc/netdata -v netdatalib:/var/lib/netdata -v netdatacache:/var/cache/netdata -v /etc/passwd:/host/etc/passwd:ro -v /etc/group:/host/etc/group:ro -v /proc:/host/proc:ro -v /sys:/host/sys:ro -v /etc/os-release:/host/etc/os-release:ro –restart unless-stopped –cap-add SYS_PTRACE –security-opt apparmor=unconfined netdata/netdata | netdata-网页监视工具 |
手动安装方式:
| https://cloud.tencent.com/developer/article/1701451 https://www.runoob.com/docker/centos-docker-install.html https://blog.csdn.net/qq_34528463/article/details/106687234 | |
| #yum remove docker docker-common docker-selinux docker-engine | 卸载旧版本 |
| #yum install -y yum-utils device-mapper-persistent-data lvm2 | 安装依赖 |
| #yum-config-manager –add-repo http://download.docker.com/linux/centos/docker-ce.repo #yum-config-manager –add-repo http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo | 设置源(二选一) |
| #yum list docker-ce –showduplicates | sort -r | 查看可安装的Docker版本 |
| #yum -y install docker-ce-18.03.1.ce #yum install docker-ce-版本号 | 选择一个版本并安装: |