一、为镜像添加SSH服务
宿主机(10.211.55.9)执行:
创建一个容器
# docker pull centos
# docker run -it centos /bin/bash
容器内(a78)执行:
安装openssh-server
# yum -y install openssh-server
如果需要正常启动SSH服务,则目录/var/run/sshd必须存在。手动创建它,并启动SSH服务
# mkdir -p /var/run/sshd
# /usr/sbin/sshd -D &
# cd /etc/ssh/sshd_config
# cd /etc/ssh
# ssh-keygen -t ecdsa -f /etc/ssh/ssh_host_ecdsa_key -N ""
# ssh-keygen -t ecdsa -f /etc/ssh/ssh_host_ed25519_key -N ""
# ssh-keygen -t ecdsa -f /etc/ssh/ssh_host_rsa_key -N ""
# /usr/sbin/sshd -D &
此时查看容器的22端口(SSH服务默认监听的端口),可见此端口已经处
于监听状态
# ss -anptl
# ps -ef | grep sshd
# yum -y install passwd
# passwd root
这时,宿主机可以直接ssh容器:ssh root@172.17.0.2
在root用户目录下创建.ssh目录,并复制需要登录的公钥信息(一般为本
地主机用户目录下的.ssh/ id_rsa.pub文件,可由ssh-keygen-t rsa命令生成)到authorized_keys文件中
# mkdir root/.ssh
# cd root/.ssh
# ssh-keygen
# cat id_rsa.pub
# vi /root/.ssh/authorized_keys
创建自动启动SSH服务的可执行文件run.sh,并添加可执行权限
# vi /run.sh
#!/bin/bash
/usr/sbin/sshd -D
# chmod +x run.sh
# exit
宿主机执行:
将所退出的容器用docker commit命令保存为一个新的sshd:centos镜像
# docker commit a78 sshd:centos
# docker images
启动容器,并添加端口映射10022-->22。其中10022是宿主主机的端口,22是容器的SSH服务监听端口
# docker run -p 10022:22 -d sshd:centos /run.sh
# docker ps -a
# ss -anptl | grep 10022
在宿主主机(192.168.1.200)或其他主机上上,可以通过SSH访问10022端口来登录容器
# ssh 10.211.55.9 -p 10022
二、web服务与应用
1、Apache
网页目录:/usr/local/apache2/htdocs
宿主机执行:
# docker run -itd -p 380:80 httpd
c202fa598cdb067cbddb5cd0c3ce9d755fbe672e55d620638534d0c0a08f862a
# docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
c202fa598cdb httpd "httpd-foreground" 10 seconds ago Up 10 seconds 0.0.0.0:380->80/tcp inspiring_kowalevski
# ss -anptl | grep 380
LISTEN 0 128 [::]:380 [::]:* users:(("docker-proxy-cu",pid=4427,fd=4))
# docker exec -it c202 /bin/bash
容器内执行:
root@c202fa598cdb:/usr/local/apache2# ls
bin build cgi-bin conf error htdocs icons include logs modules
root@c202fa598cdb:/usr/local/apache2# cd htdocs/
root@c202fa598cdb:/usr/local/apache2/htdocs# ls
index.html
root@c202fa598cdb:/usr/local/apache2/htdocs# cat index.html
<html><body><h1>It works!</h1></body></html>
其余设备可以访问宿主机的380端口可以看到网页
自定义web创建容器方法:
# docker run -itd -p 380:80 -v /root/hello.html:/usr/local/apache2/htdocs/hello.html:ro httpd
2、Nginx
网页目录:/usr/share/nginx/html
宿主机执行:
# docker run -itd -p 480:80 --name webserver nginx
# docker ps -a
# ss -anptl | grep 480
# docker exec -it 682 /bin/bash
容器内执行:
root@6828f23a5901:/# cd /usr/share/nginx/html/
root@6828f23a5901:/# cat /usr/share/nginx/html/index.html
其余设备可以访问宿主机的380端口可以看到网页
3、LAMP
linode/lamp和tutum/lamp镜像
宿主机执行:
# docker run -d -p 80:80 -p 3306:3306 tutum/lamp
b1698e0a3ad27e14d0e251c1acac0139cebb65816035e7052dfe5e7fc8735464
# docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
b1698e0a3ad2 tutum/lamp "/run.sh" 5 seconds ago Up 4 seconds 0.0.0.0:80->80/tcp, 0.0.0.0:3306->3306/tcp flamboyant_liskov
浏览器访问
# docker exec -it b16 /bin/bash
容器内执行:
# cd /var/www/html
# vi test.html
test
浏览器访问自定义网页
# netstat -anptl | grep 3306
# mysql -uroot -p
Enter password:
创建的mysql默认无密码,直接enter
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 9
Server version: 5.5.47-0ubuntu0.14.04.1 (Ubuntu)
Copyright (c) 2000, 2015, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
mysql>
1万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
