Get a list of all of the Docker commands:
docker -h
Management Commands:
builderManage buildsconfigManage Docker configscontainerManage containersengineManage the docker engineimageManage imagesnetworkManage networksnodeManage Swarm nodespluginManage pluginssecretManage Docker secretsserviceManage servicesstackManage Docker stacksswarmManage SwarmsystemManage DockertrustManage trust on Docker imagesvolumeManage volumes
docker image
buildBuild an image from a dockerfilehistoryShow the history of an imageimportImport the contents from a tarball to create a filesystem imageinspectDisplay detailed information on one or more imagesloadLoad an image from a tar file or STDINlsList imagespruneRemove unused imagespullPull an image or a repository from a registrypushPush an image or a repository to a registryrmRemove one or more imagessaveSave one or more images to a tar file (streamed to STDOUT by default)tagCreate a tag TARGET_IMAGE that refers to SOURCE_IMAGE
docker container
attachAttach local standard input, output, and error streams to a running containercommitCreate a new image from a container’s changescpCopy files/folders between a container and the local filesystemcreateCreate a new containerdiffInspect changes to files or directories on a container’s filesystemexecRun a command in a running containerexportExport a container’s filesystem as a tar archiveinspectDisplay detailed information on one or more containerskillKill one or more running containerslogsFetch the logs of a containerlsList containerspausePause all processes within one or more containersportList port mappings or a specific mapping for the containerpruneRemove all stopped containersrenameRename a containerrestartRestart one or more containersrmRemove one or more containersrunRun a command in a new containerstartStart one or more stopped containersstatsDisplay a live stream of container(s) resource usage statisticsstopStop one or more running containerstopDisplay the running processes of a containerunpauseUnpause all processes within one or more containersupdateUpdate configuration of one or more containerswaitBlock until one or more containers stop, then print their exit codes
docker container run
--helpPrint usage--rmAutomatically remove the container when it exits-d,--detachRun container in background and print container ID-i,--interactiveKeep STDIN open even if not attached--name stringAssign a name to the container-p,--publish listPublish a container’s port(s) to the host-t,--ttyAllocate a pseudo-TTY-v,--volume listMount a volume (the bind type of mount)--mount mountAttach a filesystem mount to the container--network stringConnect a container to a network (default “default”)
Create a container and attach to it:
docker container run –it busybox
Create a container and run it in the background:
docker container run –d nginx
Create a container that you name and run it in the background:
docker container run –d –name myContainer busybox
Exposing and Publishing Container Ports
How to expose ports on a container, as well as how to publish them.
Exposing:
- Expose a port or a range of ports
- This does not publish the port
- Use
--expose [PORT]
docker container run --expose 1234 [IMAGE]
Publishing:
- Maps a container’s port to a host`s port
-por--publishpublishes a container’s port(s) to the host-P, or--publish-allpublishes all exposed ports to random ports
docker container run -p [HOST_PORT]:[CONTAINER_PORT] [IMAGE] docker container run -p [HOST_PORT]:[CONTAINER_PORT]/tcp -p [HOST_PORT]:[CONTAINER_PORT]/udp [IMAGE] docker container run -P
Lists all port mappings or a specific mapping for a container:
docker container port [Container_NAME]
Executing Container Commands
Let’s see three different ways to execute commands on containers.
Executing a command:
- Dockerfile
- During a Docker run
- Using the exec command
Commands can be:
- One and done Commands
- Long running Commands
Start a container with a command:
docker container run [IMAGE] [CMD]
Execute a command on a container:
docker container exec -it [NAME] [CMD]
Example:
docker container run -d -p 8080:80 nginx docker container ps docker container exec -it [NAME] /bin/bash docker container exec -it [NAME] ls /usr/share/nginx/html/
Volume Commands
List all Docker volume commands:
docker volume -h
create: Create a volume.inspect: Display detailed information on one or more volumes.ls: List volumes.prune: Remove all unused local volumes.rm: Remove one or more volumes.
Create new volumes:
docker volume create test-volume
Get the flags available when creating a volume:
docker volume create -h
Inspecting a volume:
docker volume inspect test-volume
Deleting a volume:
docker volume rm test-volume
Removing all unused volumes:
docker volume prune
Bind Mounts
Bind mounts have been around since the early days of Docker. They have limited functionality compared to volumes. With bind mount, a file or directory on the host machine is mounted into a container.
Volumes use a new directory that is created within Docker’s storage directory on the host machine, and Docker manages that directory’s contents.
Using the mount flag:
docker container run -d --name <NAME> --mount type=bind, source=<SOURCE>, target=<TARGET> <IMAGE>
Using the volume flag:
docker container run -d --name <NAME> -v <SOURCE>:<TARGET> <IMAGE>
The Dockerfile
FROM: Initializes a new build stage and sets the Base Image
RUN: Will execute any commands in a new layer
CMD: Provides a default for an executing container. There can only be one CMD instruction in a Dockerfile
LABEL: Adds metadata to an image
EXPOSE: Informs Docker that the container listens on the specified network ports at runtime
ENV: Sets the environment variable <key> to the value <value>
ADD: Copies new files, directories or remote file URLs from <src> and adds them to the filesystem of the image at the path <dest>.
COPY: Copies new files or directories from <src> and adds them to the filesystem of the container at the path <dest>.
ENTRYPOINT: Allows for configuring a container that will run as an executable
VOLUME: Creates a mount point with the specified name and marks it as holding externally mounted volumes from native host or other containers
USER: Sets the user name (or UID) and optionally the user group (or GID) to use when running the image and for any RUN, CMD, and ENTRYPOINT instructions that follow it in the Dockerfile
WORKDIR: Sets the working directory for any RUN, CMD, ENTRYPOINT, COPY, and ADD instructions that follow it in the Dockerfile
ARG: Defines a variable that users can pass at build-time to the builder with the docker build command, using the --build-arg <varname>=<value> flag
ONBUILD: Adds a trigger instruction to the image that will be executed at a later time, when the image is used as the base for another build
HEALTHCHECK: Tells Docker how to test a container to check that it is still working
SHELL: Allows the default shell used for the shell form of commands to be overridden
How to Build the image from Dockerfie:
docker image build -t [NAME]:[TAG] .
Useful flags:
-f,--file string: This is the name of the Dockerfile (Default isPATH/Dockerfile).--force-rm: Always remove intermediate containers.--label list: Set metadata for an image.--rm: Remove intermediate containers after a successful build (default istrue).--ulimit ulimit: This setsulimitoptions (default is []).
Building an image using a URL:
docker image build -t <NAME>:<TAG> <GIT_URL>#<REF> docker image build -t <NAME>:<TAG> <GIT_URL>#:<DIRECTORY> docker image build -t <NAME>:<TAG> <GIT_URL>#<REF>:<DIRECTORY>
Building an image from a zip file:
docker image build -t <NAME>:<TAG> - < <FILE>.tar.gz
Distributing Images on Docker Hub
Docker Push:
docker image push <USERNAME>/<IMAGE_NAME>:<TAG>
