文章目录
Dockerfile
一、概览
1、dockerfile步骤
1、容器开启ssh
2、容器使用systemctl
3、nginx容器(手工编译)
4、Tomcat容器
5、mysql容器(手工编译)
二、实验
1、构建SSH镜像
cd /opt
mkdir sshd
cd sshd
vim Dockerfile
FROM centos:7 #指定基础镜像
MAINTAINER The Centos Project <cloud-centos> #描述信息
RUN yum -y update #更新容器yum源
RUN yum -y install openssh* net-tools lsof telnet passwd #部署环境
RUN echo '123456' | passwd --stdin root #设置root登录密码
RUN sed -i 's/UsePAM yes/UsePAM no/g' /etc/ssh/sshd_config #禁用ssh中的pam验证
RUN ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key #创建非对称密钥,并指定文件路径
RUN sed -i '/^session\s\+required\s\+pam_loginuid.so/s/^/#/' /etc/pam.d/sshd #禁用pam的ssh的pam会话模块
RUN mkdir -p /root/.ssh && chown root.root /root && chmod 700 /root/.ssh #创建ssh工作目录和权限设置
EXPOSE 22 #开放22端口
CMD ["/usr/sbin/sshd","-D"] #容器加载时启动sshd服务
docker build -t sshd:new . ##创建镜像, '注意有个空格跟点
docker run -d -P sshd:new ##启动容器
ssh localhost -p 32768 ##远程连接并进入容器
yes ##继续
123456 ##输入密码,要和前面设置的密码保持一致
exit ##退出
2、构建Systemctl镜像
基于上面的ssh:new这个镜像,我们再创建一个systemctl镜像
cd /opt
mkdir systemctl
cd systemctl/
vim Dockerfile ##编辑配置文件
FROM sshd:new
MAINTAINER built image systemctl <shuai>
ENV container docker
RUN yum install -y vim
RUN (cd /lib/systemd/system/sysinit.target.wants/; for i in *;do [ $i == \systemd-tmpfiles-setup.service ] || rm -f $i; done); \
rm -f /lib/systemd/system/multi-user.target.wants/*; \
rm -f /etc/systemd/system/*.wants/*; \
rm -f /lib/systemd/system/local-fs.target.wants/*; \
rm -f /lib/systemd/system/sockets.target.wants/*udev*; \
rm -f /lib/systemd/system/sockets.target.wants/initctl*; \
rm -f /lib/systemd/system/basic.target.wants/*; \
rm -f /lib/systemd/system/anaconda.target.wants/*;
VOLUME [ "/sys/fs/cgroup" ]
CMD ["/usr/sbin/init"]
docker build -t systemd:new . //这边空格加点
//privateged container内的root拥有真正的root权限。否则,container内的root只是外部的一个普通用户权限。
docker run --privileged -ti -v /sys/fs/cgroup:/sys/fs/cgroup:ro systemd:new /sbin/init &
docker ps -a //查看容器列表
docker exec -it b02c93a61612 /bin/bash //进入容器
systemctl start sshd //测试
systemctl status sshd //查看状态
exit
3、编译安装nginx工具
cd /opt
mkdir nginx
cd nginx/
vim Dockerfile
FROM centos:7
MAINTAINER Test nginx
RUN yum -y update
RUN yum -y install gcc gcc-c++ zlib-devel pcre-devel make
RUN useradd -M -s /sbin/nologin nginx
ADD nginx-1.12.0.tar.gz /usr/local/src
WORKDIR /usr/local/src/nginx-1.12.0
RUN ./configure \
--prefix=/usr/local/nginx \
--user=nginx \
--group=nginx \
--with-http_stub_status_module && make && make install
ENV PATH /usr/local/nginx/sbin:$PATH
EXPOSE 80
EXPOSE 443
RUN echo "daemon off;" >>/usr/local/nginx/conf/nginx.conf
ADD run.sh /run.sh
RUN chmod 755 /run.sh
CMD ["/run.sh"]
vim run.sh
#!/bin/bash
/usr/local/nginx/sbin/nginx
ls //查看三个文件,把nginx-1.12.0.tar.gz上传到当前目录
docker build -t nginx:new . //创建新镜像
docker run -d -P nginx:new //开启运行
docker ps -a
访问http://192.168.150.174:32770/,能查看到nginx页面
4、编辑安装tomcat工具
cd /opt
mkdir tomcat ##apache-tomcat-8.5.16.tar.gz和jdk-8u91-linux-x64.tar.gz放入目录中
cd tomcat/
vim Dockerfile
FROM centos:7
MAINTAINER this is nginx image <johnson>
ADD jdk-8u91-linux-x64.tar.gz /usr/local
WORKDIR /usr/local/
ENV JAVA_HOME /usr/local/java
ENV JAVA_BIN /usr/local/java/bin
ENV JRE_HOME /usr/local/java/jre
ENV PATH $PATH /usr/local/java/bin/:/usr/local/java/jre/bin
ENV CLASSPATH /usr/local/java/jre/bin:/usr/local/java/jre/lib/charsets.jar
ADD apache-tomcat-8.5.16.tar.gz /usr/local
WORKDIR /usr/local/
RUN mv apache-tomcat-8.5.16 /usr/local/tomcat8
RUN ln -s /usr/local/tomcat8/bin/startup.sh /usr/local/bin/
RUN ln -s /usr/local/tomcat8/bin/shutdown.sh /usr/local/bin/
EXPOSE 8080
ENTRYPOINT ["/usr/local/tomcat8/bin/catalina.sh","run"]
docker build -t tomcat:centos . ##创建镜像
docker run --privileged -it -d --name tomcat01 -p 1216:8080 tomcat:centos
5、安装mysql镜像
cd /opt
mkdir mysqld
cd mysqld
vim Dockerfile
FROM centos:7
RUN yum -y install ncures ncurses-devel bison cmake make gcc gcc-c++
RUN useradd -M -s /sbin/nologin mysql
ADD mysql-boost-5.7.20.tar.gz /usr/local/src
WORKDIR /usr/local/src/mysql-5.7.20/
RUN cmake \
-DCMAKE_INSTALL_PREFIX=/usr/local/mysql \
-DMYSQL_UNIX_ADDR=/usr/local/mysql/mysql.sock \
-DSYSCONFDIR=/etc \
-DSYSTEMD_PID_DIR=/usr/local/mysql \
-DDEFAULT_CHARSET=utf8 \
-DDEFAULT_COLLATION=utf8_general_ci \
-DWITH_INNOBASE_STORAGE_ENGINE=1 \
-DWITH_ARCHIVE_STORAGE_ENGINE=1 \
-DWITH_BLACKHOLE_STORAGE_ENGINE=1 \
-DWITH_PERFSCHEMA_STORAGE_ENGINE=1 \
-DMYSQL_DATADIR=/usr/local/mysql/data \
-DWITH_BOOST=boost \
-DWITH_SYSTEMD=1 && make && make install
RUN chown -R mysql:mysql /usr/local/mysql
RUN rm -rf /etc/my.cnf
ADD my.cnf /etc
RUN chown mysql:mysql /etc/my.cnf
ENV PATH=/usr/local/mysql/bin:/usr/local/mysql/lib:$PATH
WORKDIR /usr/local/mysql/
RUN bin/mysqld \
--initialize-insecure \
--user=mysql \
--basedir=/usr/local/mysql \
--datadir=/usr/local/mysql/data
RUN cp /usr/local/mysql/usr/lib/systemd/system/mysqld.service /usr/lib/systemd/system/
EXPOSE 3306
RUN echo -e "#!/bin/bash \nsystemctl enable mysqld"> /run.sh
RUN chmod 755 /run.sh
RUN sh /run.sh
CMD ["init"]
#CMD ["mysqld_safe"]
vim my.cnf ##编辑配置文件
[client]
port = 3306
default-character-set=utf8
socket = /usr/local/mysql/mysql.sock
[mysql]
port = 3306
default-character-set=utf8
socket = /usr/local/mysql/mysql.sock
[mysqld]
user = mysql
basedir = /usr/local/mysql
datadir = /usr/local/mysql/data
port = 3306
character_set_server=utf8
pid-file = /usr/local/mysql/mysqld.pid
socket = /usr/local/mysql/mysql.sock
server-id = 1
sql_mode=NO_ENGINE_SUBSTITUTION,STRICT_TRANS_TABLES,NO_AUTO_CREATE_USER,NO_AUTO_VALUE_ON_ZERO,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,PIPES_AS_CONCAT,ANSI_QUOTES
docker build -t mysql:centos . //创建镜像
docker run --name=mysql_server -d -P --privileged mysql:centos ##不降权运行
docker exec -it 33fa16163aac /bin/bash //进入容器
mysql -uroot -p //进入数据库
grant all privileges on *.* to 'root'@'%' identified by 'abc123';
grant all privileges on *.* to 'root'@'localhost' identified by 'abc123';
flush privileges;
在宿主机安装mairadb客户端连接mysql容器
mysql -h 192.168.150.174 -uroot -P32771 -pabc123
6、删除none镜像
vim none.sh ##文件内容如下所示
docker ps -a | grep "Exited" | awk '[print $1}'|xargs docker stop
docker ps -a | grep "Exited" | awk '[print $1}'|xargs docker rm
docker images|grep none | awk '{print $3}'|xargs docker rmi
三、问题解决
1、错误:[Warning] IPv4 forwarding is disables.Networking will not work.
解决方法:
vim /etc/sysctl.conf
net.ipv4.ip_forward=1
sysctl -p
systemctl restart network
systemctl restart docker