CentOS上开启Docker远程访问

已于 2022-02-17 16:59:49 修改
阅读量1.1k 收藏 2
点赞数
文章标签: docker centos 容器
于 2022-02-17 16:45:17 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_42023748/article/details/122986719
版权

CentOS上开启Docker远程访问

1.修改/etc/systemd/system//docker.service

直接在ExecStart后面追加  -H unix:///var/run/docker.sock -H 0.0.0.0:2375

[Unit]
Description=Docker Application Container Engine
Documentation=http://docs.docker.io

[Service]
WorkingDirectory=/data/docker
Environment="PATH=/opt/docker/bin:/bin:/sbin:/usr/bin:/usr/sbin"
ExecStart=/opt/docker/bin/dockerd \
          -H unix:///var/run/docker.sock -H 0.0.0.0:2375
ExecReload=/bin/kill -s HUP $MAINPID
Restart=on-failure
RestartSec=5
LimitNOFILE=infinity
LimitNPROC=infinity
LimitCORE=infinity
Delegate=yes
KillMode=process

[Install]
WantedBy=multi-user.target

2.重启docker,让配置生效

# systemctl daemon-reload
# systemctl restart docker.service

3.用netstat -lntp | grep 2375 查看配置是否生效

netstat -lntp | grep 2375

 4.使用curl进行测试

curl 127.0.0.1:2375/info

[root@iZwz99xeomvq1omj9cu7tuZ system]# curl 127.0.0.1:2375/info
{"ID":"CN5P:W2Y7:2FV6:OY4U:CFS4:WYDC:DJ4N:VXZI:PTNR:BHTD:FRHR:VE27","Containers":0,"ContainersRunning":0,"ContainersPaused":0,"ContainersStopped":0,"Images":0,"Driver":"overlay2","DriverStatus":[["Backing Filesystem","xfs"],["Supports d_type","true"],["Native Overlay Diff","true"],["userxattr","false"]],"Plugins":{"Volume":["local"],"Network":["bridge","host","ipvlan","macvlan","null","overlay"],"Authorization":null,"Log":["awslogs","fluentd","gcplogs","gelf","journald","json-file","local","logentries","splunk","syslog"]},"MemoryLimit":true,"SwapLimit":true,"KernelMemory":true,"KernelMemoryTCP":true,"CpuCfsPeriod":true,"CpuCfsQuota":true,"CPUShares":true,"CPUSet":true,"PidsLimit":true,"IPv4Forwarding":true,"BridgeNfIptables":true,"BridgeNfIp6tables":true,"Debug":true,"NFd":25,"OomKillDisable":true,"NGoroutines":42,"SystemTime":"2022-02-17T16:57:12.093571887+08:00","LoggingDriver":"json-file","CgroupDriver":"cgroupfs","CgroupVersion":"1","NEventsListener":1,"KernelVersion":"4.18.0-240.22.1.el8_3.x86_64","OperatingSystem":"CentOS Linux 8","OSVersion":"8","OSType":"linux","Architecture":"x86_64","IndexServerAddress":"https://index.docker.io/v1/","RegistryConfig":{"AllowNondistributableArtifactsCIDRs":[],"AllowNondistributableArtifactsHostnames":[],"InsecureRegistryCIDRs":["127.0.0.0/8"],"IndexConfigs":{"docker.io":{"Name":"docker.io","Mirrors":["https://477njxek.mirror.aliyuncs.com/","https://registry.docker-cn.com/","https://hub-mirror.c.163.com/","https://docker.mirrors.ustc.edu.cn/"],"Secure":true,"Official":true}},"Mirrors":["https://477njxek.mirror.aliyuncs.com/","https://registry.docker-cn.com/","https://hub-mirror.c.163.com/","https://docker.mirrors.ustc.edu.cn/"]},"NCPU":8,"MemTotal":33513316352,"GenericResources":null,"DockerRootDir":"/data/docker/data","HttpProxy":"","HttpsProxy":"","NoProxy":"","Name":"server1","Labels":[],"ExperimentalBuild":false,"ServerVersion":"20.10.7","Runtimes":{"io.containerd.runc.v2":{"path":"runc"},"io.containerd.runtime.v1.linux":{"path":"runc"},"runc":{"path":"runc"}},"DefaultRuntime":"runc","Swarm":{"NodeID":"","NodeAddr":"","LocalNodeState":"inactive","ControlAvailable":false,"Error":"","RemoteManagers":null},"LiveRestoreEnabled":true,"Isolation":"","InitBinary":"docker-init","ContainerdCommit":{"ID":"d71fcd7d8303cbf684402823e425e9dd2e99285d","Expected":"d71fcd7d8303cbf684402823e425e9dd2e99285d"},"RuncCommit":{"ID":"b9ee9c6314599f1b4a7f497e1f1f856fe433d3b7","Expected":"b9ee9c6314599f1b4a7f497e1f1f856fe433d3b7"},"InitCommit":{"ID":"de40ad0","Expected":"de40ad0"},"SecurityOptions":["name=seccomp,profile=default"],"ProductLicense":"Community Engine","Warnings":["WARNING: API is accessible on http://0.0.0.0:2375 without encryption.\n         Access to the remote API is equivalent to root access on the host. Refer\n         to the 'Docker daemon attack surface' section in the documentation for\n         more information: https://docs.docker.com/go/attack-surface/"]}

5.开放2375端口

firewall-cmd --permanent --add-port=2375/tcp --zone=public
systemctl restart firewalld.service

在window上打开命令行输入

C:\Users\Administrator>curl http://120.75.13.123:2375/info
{"ID":"CN5P:W2Y7:2FV6:OY4U:CFS4:WYDC:DJ4N:VXZI:PTNR:BHTD:FRHR:VE27","Containers":0,"ContainersRunning":0,"ContainersPaused":0,"ContainersStopped":0,"Images":0,"Driver":"overlay2","DriverStatus":[["Backing Filesystem","xfs"],["Supports d_type","true"],["Native Overlay Diff","true"],["userxattr","false"]],"Plugins":{"Volume":["local"],"Network":["bridge","host","ipvlan","macvlan","null","overlay"],"Authorization":null,"Log":["awslogs","fluentd","gcplogs","gelf","journald","json-file","local","logentries","splunk","syslog"]},"MemoryLimit":true,"SwapLimit":true,"KernelMemory":true,"KernelMemoryTCP":true,"CpuCfsPeriod":true,"CpuCfsQuota":true,"CPUShares":true,"CPUSet":true,"PidsLimit":true,"IPv4Forwarding":true,"BridgeNfIptables":true,"BridgeNfIp6tables":true,"Debug":true,"NFd":24,"OomKillDisable":true,"NGoroutines":40,"SystemTime":"2022-02-17T16:51:30.813638631+08:00","LoggingDriver":"json-file","CgroupDriver":"cgroupfs","CgroupVersion":"1","NEventsListener":0,"KernelVersion":"4.18.0-240.22.1.el8_3.x86_64","OperatingSystem":"CentOS Linux 8","OSVersion":"8","OSType":"linux","Architecture":"x86_64","IndexServerAddress":"https://index.docker.io/v1/","RegistryConfig":{"AllowNondistributableArtifactsCIDRs":[],"AllowNondistributableArtifactsHostnames":[],"InsecureRegistryCIDRs":["127.0.0.0/8"],"IndexConfigs":{"docker.io":{"Name":"docker.io","Mirrors":["https://477njxek.mirror.aliyuncs.com/","https://registry.docker-cn.com/","https://hub-mirror.c.163.com/","https://docker.mirrors.ustc.edu.cn/"],"Secure":true,"Official":true}},"Mirrors":["https://477njxek.mirror.aliyuncs.com/","https://registry.docker-cn.com/","https://hub-mirror.c.163.com/","https://docker.mirrors.ustc.edu.cn/"]},"NCPU":8,"MemTotal":33513316352,"GenericResources":null,"DockerRootDir":"/data/docker/data","HttpProxy":"","HttpsProxy":"","NoProxy":"","Name":"server1","Labels":[],"ExperimentalBuild":false,"ServerVersion":"20.10.7","Runtimes":{"io.containerd.runc.v2":{"path":"runc"},"io.containerd.runtime.v1.linux":{"path":"runc"},"runc":{"path":"runc"}},"DefaultRuntime":"runc","Swarm":{"NodeID":"","NodeAddr":"","LocalNodeState":"inactive","ControlAvailable":false,"Error":"","RemoteManagers":null},"LiveRestoreEnabled":true,"Isolation":"","InitBinary":"docker-init","ContainerdCommit":{"ID":"d71fcd7d8303cbf684402823e425e9dd2e99285d","Expected":"d71fcd7d8303cbf684402823e425e9dd2e99285d"},"RuncCommit":{"ID":"b9ee9c6314599f1b4a7f497e1f1f856fe433d3b7","Expected":"b9ee9c6314599f1b4a7f497e1f1f856fe433d3b7"},"InitCommit":{"ID":"de40ad0","Expected":"de40ad0"},"SecurityOptions":["name=seccomp,profile=default"],"ProductLicense":"Community Engine","Warnings":["WARNING: API is accessible on http://0.0.0.0:2375 without encryption.\n         Access to the remote API is equivalent to root access on the host. Refer\n         to the 'Docker daemon attack surface' section in the documentation for\n         more information: https://docs.docker.com/go/attack-surface/"]}

高级盘丝洞
关注
  • 0
    点赞
  • 2
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
docker安装配置
wq1205750492的博客
04-29 7760
一、docker配置参数 docker.service文件内容 /usr/lib/systemd/system/docker.service [Unit] Description=Docker Application Container Engine Documentation=http://docs.docker.com After=network.target Wants=docker-storage-setup.service Requires=docker-cleanup.timer [Servi
如何覆盖docker.service文件中的配置,解决一次docker.service启动不成功的问题
QQ83512272的博客
08-16 1万+
如何覆盖docker.service文件中的配置,解决一次docker.service启动不成功的问题
Docker服务systemd配置文件详解
最新发布
Yeats_Liao的博客
10-24 1719
Docker服务systemd配置文件详解
安装Docker
sc6666的博客
03-30 875
安装命令 使用官方安装脚本自动安装 curl -fsSL https://get.docker.com | bash -s docker --mirror Aliyun 也可以使用国内daocloud curl -sSL https://get.daocloud.io/docker | sh 配置docker仓库 sudo vim /etc/docker/daemon.json { "registry-mirrors" : [ "http://ovfft...
通过systemd配置Docker
酱油蔡的酱油坛
01-13 8150
Docker1.9.1安装后默认没有/etc/sysconfig/docker文件,造成习惯使用老版本的用户不知道在什么地方配置一些Daemon默认启动项。本文以配置--insecure-registry为例介绍了如何通过systemd配置Docker
docker离线安装问题解决
人生就是不断地学习
11-01 4237
docker离线安装问题解决。
docker启动失败报错:Failed to start docker.service: Unit is not loaded properly: Invalid argument,卸载重装报同样错
热门推荐
a704397849的博客
09-07 3万+
docker 启动报错,具体信息如下: [root@iZwz96ddwhet5yr56ffxmlZ ~]# systemctl start docker Failed to start docker.service: Unit is not loaded properly: Invalid argument. See system logs and 'systemctl status docker...
docker离线环境下的安装及相关操作踩坑
qq_44535093的博客
06-06 1693
docker离线安装、镜像导出、Selinux、firewalld和iptables、服务器可以访问docker远程不行、修改docker网关
docker 报错
tankpanv的博客
02-14 4746
如果此时你并没有报找不到容器,而是报以下错误,docker服务能正常启动,但是所有docker命令都用不了,执行任何docker命令都报以下错误ERROR: Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running? 原因:启动docker没有在/var/run/ 生成docker.sock 解决方案1:启动是指定生成docker.sock 的目录 sudo vim
systemctl docker start 启动失败 解决办法
weixin_38641128的博客
11-13 3142
systemctl docker start 启动失败 解决办法
Docker 启动参数
喝醉酒的小白
05-23 5763
地址和 Systemd 插件需要特定的环境和配置,并且这种机制与 Docker 默认的网络配置和通信方式有所不同。在 Docker 中,Systemd 插件是一种网络插件,用于集成 Docker 容器与宿主机上的 Systemd 服务管理器。这样,容器内的进程就可以通过这个文件描述符与 Systemd 进程进行通信,实现与宿主机上的 Systemd 进程的交互。使用 Systemd 插件可以使得容器中的服务管理更加灵活和集成化,能够充分利用 Systemd 在系统级别的服务管理和监控功能。
Assignment outside of section 报错是什么意思?
weixin_43707146的博客
03-11 1690
Assignment outside of section 可能是指 某个配置项没有写在 正确的位置,希望可以给读者一些启发
Docker17及以上代理问题
yezi7788的博客
11-04 243
前言:Docker比13还香,但是需要绕过网络的坑。从没有搞过网络运维的我,来到了一家拓荒的公司,服务器自己撘,网络自己配(已有同事配好了),但是服务器不能上外网是必要条件,所以测试环境用了CCproxy代理。一切搞好以后以为万事大吉了,但是遇上了Docker······ 公司服务器一般是不能上外网的,但是有时候又需要上外网,所以就需要用代理来解决这个问题,CCproxy就是专门来解决这个问题的一款不错的软件,你只需要在一台可以上外网的机器上下载CCproxy,然后使用一下...
docker修改默认存储位置
benben044的专栏
05-25 1万+
docker更换默认存储路径的方法
vmware虚拟机使用docker使用代理国外镜像
月夜楓
06-17 3811
代理
Docker安装经验分享
Smiled0388的博客
04-18 454
Docker 是一个开源的应用容器引擎,让开发者可以打包他们的应用以及依赖包到一个可移植的容器中,然后发布到任何流行的Linux机器上,也可以实现虚拟化,容器是完全使用沙箱机制,相互之间不会有任何接口。更多信息请查看Docker官网。 安装 当前docker分为社区版和企业版,linux系统自带的源一般都是企业版,在安装社区版时需要添加yum源。 安装环境 CentOS 7.5 64bit 安装必...
Docker 配置远程访问
u010856284的博客
04-14 1886
首先编辑docker的宿主机文件/lib/systemd/system/docker.service。修改以ExecStart开头的行:(因为我的系统是centos 7的,所以修改为下面得)接下来测试一下看是否能连接到docker api。上面的2375就是对应端口。修改后保存文件,然后通知docker服务做出的修改。重启docker服务。
Linux系统下搭建docker服务
a894613973的博客
02-02 1119
写这篇文章主要也是加深一下印象,还有怕别的大佬把文章删了,这里主要是对其他大佬的文章内容的一些整合,包括docker的卸载,linux环境下在离线安装、简单的docker命令等。选择符合自己LinuxCPU的架构的离线包下载。因为最终文件要放到/usr/bin/docker目录下,所以我直接将压缩包拷贝到了/usr/bin/目录进行解压。编辑/usr/lib/systemd/system/docker.service文件。4.删除docker的镜像文件,默认在/var/lib/docker目录下。
centos7 docker安装mysql 无法远程连接
07-18
5. 确保CentOS 7防火墙已正确配置以允许从远程访问MySQL的3306端口。可以使用以下命令来打开3306端口: ``` firewall-cmd --zone=public --add-port=3306/tcp --permanent firewall-cmd --reload ``` 6. 现在,...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值