Scribd
Upload
4 views

Docker Notes-1

The document explains how to expose ports in Docker containers to access applications running inside them, using an Ubuntu container as an example. It details the creation of a Dockerfile, including commands like FROM, RUN, COPY, and ENTRYPOINT, to automate the image creation process with necessary dependencies and configurations. Additionally, it emphasizes the importance of configuring firewall rules to allow external access to the exposed ports and provides practical examples of building and running Docker containers.

Uploaded by

Arun Singh
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
4 views

Docker Notes-1

The document explains how to expose ports in Docker containers to access applications running inside them, using an Ubuntu container as an example. It details the creation of a Dockerfile, including commands like FROM, RUN, COPY, and ENTRYPOINT, to automate the image creation process with necessary dependencies and configurations. Additionally, it emphasizes the importance of configuring firewall rules to allow external access to the exposed ports and provides practical examples of building and running Docker containers.

Uploaded by

Arun Singh
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 22

Docker port expose

We know that container does not have any public ip of its own….
So if the application is running inside the container how we can
access it then

In such cases we use the concept of port export where we can


expose a port of the container with port of the machine …now if we
open publicip:portofmachine we will be able to access the
application running inside the container

## lets say we have an ubuntu container with a specific port


exposed

docker run -it --name 29juncon -p 8902:80 ubuntu /bin/bash


#in this way we will create a container with name 29juncon with port
8902 of machine (ec2/virtual machine/instance) exposed with port
80 of the container
apt update -y
apt install apache2 -y
service apache2 start
cd /var/www/html
#default location of apache where whatever files i will upload would
be accessible from net
rm index.html
apt install git -y
git clone https://github.com/akshu20791/apachewebsite .

Press ctrl p and ctrl q to come out of the container without stopping
the container

You can see your container is running:


docker ps

### THE FIREWALL OF THE MACHINE (SECURITY GROUP ) OF


THE MACHINE WILL NOT ALLOW ME TO ACCESS THE PORT
8902 from outside the network

We need to enable the inbound rule 8902 of the machine


Edit inbound rule
Add rule
Save

Go to your instance
Copy the public ip of the machine
# Docker files
It is text file which consist of set of instructions
And it automates the docker image creation

Case study:
Lets suppose you are working for Netflix ..and you are devops
engineer…there is an application you need to deploy for netflix…
Now problem which you are facing is that app requires more then
100 dependencies and alot of environment variables need to be
passed when the container was created. You went to Developer
and how to configure so many things inside the container ..
So developer said : let me a dockerfile…which will consist of app,
base image, dependencies , and everything required by the
application to run inside the container..after the developer shared
you that dockerfile you simply executed the dockerfile to create a
custom image…and from the custom image you created n number
of containers.
How to write the dockerfile ?????????????????
Dockerfile is made of key-component system

FROM -> For the base image the command need to be on the top
of the dockerfile

E.g FROM ubuntu


FROM alpine
FROM mysql

RUN -> To execute some command . It will create the layer of


image
E,g
RUN apt update
RUN apt install apache2 -y
RUN touch file1
RUN echo “hello world”> myfile.txt
MAINTAINER -> Author /ownerr of the dockerfile. For
documentation purpose this will help .

E.g
MAINTAINER akshat<[email protected]>
MAINTAINER akshatgupta

COPY -> COPY the files from local system (Docker virtual
machine/EC2) . For example: lets say there is a index.html file in
your machine …and when the container is getting created you want
to copy that file inside the container in this case you will use COPY

COPY sourcelocation destinationincontianer

E.g COPY /home/ubuntu/index.html /var/www/html/index.html


(it will copy the index.html from the machine present in home
ubuntu to /var/www/html )

ADD -> Similar to copy…it can copy the file from your machine to
container but can also download the file from internet into your
container

E.g
ADD /home/ubuntu/index.html /var/www/html/index.html

EXPOSE -> It exposes the port of the container like port 80 if your
app is running over internet ….or port 8080 if you are creating
jenkins container ….or port 3306 for mysql…
If you dont put expose then also you will be able to do port
expose…but since the devops engineer they might not aware on
which port the developer has configured the application…if expose
is there it makes it easier devops engineer to deploy the application

E.g EXPOSE 3306


EXPOSE 80

WORKDIR -> Set the working directory for the container…which


means lets say you set the
WORKDIR /akshat
RUN touch file1
This file1 would be created in akshat directory inside the container

ENV -> Environment variables …to set some environment variables


which might be utilized by my application

Eg
ENV name=akshat

CMD -> Executes the command during the container creation . Lets
say if we want to start a software then we will use CMD

ENTRYPOINT -> Entrypoint is similar to CMD but has more priority


of CMD .

### Practicals

vi Dockerfile
(always remember the Dockerfile name is always Dockerfile with D
capital)

FROM ubuntu #base image would be ubuntu image


RUN echo “hello world” > testfile
# we will create a file with name testfile with content hello world
RUN touch myfile #create a blank file with name file
RUN apt update #update all the packages in ubuntu
RUN apt install apache2 -y #install apache inside the machine
Press esc :wq

docker build -t mynewimg .


# this command will build the docker file present in current directory
(.) and build a custom image named mynewimg

From this custom image i want to create a container 👍


docker run -it --name mycon mynewimg /bin/bash

ls
### lets suppose we have installed apache ….we need to start
apache as well…automatically after the container is created
What would be our approach to start the apache during creation of
the container?

vi Dockerfile

FROM ubuntu
RUN echo "hello world" >testfile.txt
RUN touch myfile.txt
RUN apt update
RUN apt install apache2 -y
CMD ["apache2ctl", "-D", "FOREGROUND"]
docker build -t mysecondimg .

docker images

docker run -dt --name webapp3 mysecondimg

(Here dt means detached terminal which means you will not enter
inside the container….and you will not use /bin/bash as well
because we want to execute apache2ctl (CMD) rather then
bin/bash while executing the container)

Lets enter inside the container


You will see apache2 is running

## we can even expose the port and see if apache2 contianer is


accessible from the internet

docker run -dt -p 8000:80 --name webapp4 mysecondimg

Go to aws ec2 machine - security group


’’

Edit inbound rule


Add rule
Save

WE can use the ENTRYPOINT as well in the same way

vi Dockerfile

FROM ubuntu
RUN echo "hello world" >testfile.txt
RUN touch myfile.txt
RUN apt update
RUN apt install apache2 -y
ENTRYPOINT ["apache2ctl", "-D", "FOREGROUND"]

docker build -t mythirdimg .

docker images

docker run -dt -p 8999:80 --name webapp5 mythirdimg

docker exec -it webapp5 /bin/bash


## Lets say you are working for Dmart client ..where in some config file
need to be shared inside the container when the container is created
OR
SUPPOSE MY DEVELOPER HAVE SHARED ME INDEX.HTML
FILE AND I NEED TO COPY THAT FILE in container WHENEVER
THE CONTAINER IS CREATED
How such situations can be handled

vi index.html
Press i to start inserting
Hello this is the file shared by developer
Press :wq to save and quit

vi Dockerfile

FROM ubuntu
RUN echo "hello world" >testfile.txt
RUN touch myfile.txt
RUN apt update
RUN apt install apache2 -y
COPY index.html /var/www/html
ENTRYPOINT ["apache2ctl", "-D", "FOREGROUND"]
Press esc :wq

docker build -t fourtimg .

docker run -dt -p 8099:80 --name websever7 fourtimg

Select the machine -> security group -> click on security group ->
edit inbound rule -> add new rule -> add port 8099

Save
(if sometimes you get error here…it might be that you are accessing
the application via https

E,g:
http://13.126.192.54:8099/

If we use https://13.126.192.54:8099/
Because we dont have SSL certificate which is paid certificate
…some free are also there but they are not much secured)

## SEE HOW WORKDIR ,MAINTAINER AND ENV WORKS IN DOCKERFILE

vi Dockerfile

FROM ubuntu
MAINTAINER akshat<[email protected]>
WORKDIR mydirectory
ENV name=akshat
RUN echo "hello world" >testfile.txt
RUN touch myfile.txt
RUN apt update
RUN apt install apache2 -y
COPY index.html /var/www/html
ENTRYPOINT ["apache2ctl", "-D", "FOREGROUND"]

# in above we are putting maintainer which helps us to identify who


has last maintained this dockerfile…if you working in multitier app
and have multiple dockerfile it helps the devops engineer to reach
to correct developer
# workingdir : this sets the working directory…so now whatever
commands we have executed by default will happen in workingdir
itself
#env sets the key value pair for my container

docker build -t myfifthimg .

docker run -dt --name webapp8 myfifthimg

docker exec -it webapp8 /bin/bash


Since our workdir was ydirectory you will see the two files is created
in mydirectory

Grep is command to find any text word from paragraph

###################

You might also like