Book Image

The Docker Workshop

By : Vincent Sesto, Onur Yılmaz, Sathsara Sarathchandra, Aric Renzo, Engy Fouda

5 (1)

Book Image

The Docker Workshop

5 (1)

By: Vincent Sesto, Onur Yılmaz, Sathsara Sarathchandra, Aric Renzo, Engy Fouda

Overview of this book

No doubt Docker Containers are the future of highly-scalable software systems and have cost and runtime efficient supporting infrastructure. But learning it might look complex as it comes with many technicalities. This is where The Docker Workshop will help you. Through this workshop, you’ll quickly learn how to work with containers and Docker with the help of practical activities.? The workshop starts with Docker containers, enabling you to understand how it works. You’ll run third party Docker images and also create your own images using Dockerfiles and multi-stage Dockerfiles. Next, you’ll create environments for Docker images, and expedite your deployment and testing process with Continuous Integration. Moving ahead, you’ll tap into interesting topics and learn how to implement production-ready environments using Docker Swarm. You’ll also apply best practices to secure Docker images and to ensure that production environments are running at maximum capacity. Towards the end, you’ll gather skills to successfully move Docker from development to testing, and then into production. While doing so, you’ll learn how to troubleshoot issues, clear up resource bottlenecks and optimize the performance of services. By the end of this workshop, you’ll be able to utilize Docker containers in real-world use cases.

Preface

1. Running My First Docker Container

1. Running My First Docker Container

Advantages of Using Docker

Running Docker Containers

Managing Docker Containers

Attaching to Containers Using the attach Command

Free Chapter

2. Getting Started with Dockerfiles

2. Getting Started with Dockerfiles

What Is a Dockerfile?

Common Directives in Dockerfiles

Building Docker Images

Other Dockerfile Directives

3. Managing Your Docker Images

3. Managing Your Docker Images

Docker Layers and Caching

Creating Base Docker Images

Docker Image Naming and Tagging

Using the latest Tag in Docker

Docker Image Tagging Policies

Storing and Publishing Your Docker Images

The Docker Registry

4. Multi-Stage Dockerfiles

4. Multi-Stage Dockerfiles

Normal Docker Builds

What Is the Builder Pattern?

Introduction to Multi-Stage Dockerfiles

Dockerfile Best Practices

5. Composing Environments with Docker Compose

5. Composing Environments with Docker Compose

Docker Compose CLI

Configuration of Services

Service Dependency

6. Introduction to Docker Networking

6. Introduction to Docker Networking

Native Docker DNS

Native Docker Network Drivers

Docker Overlay Networking

Non-Native Docker Networks

7. Docker Storage

7. Docker Storage

The Container Life Cycle

Stateful versus Stateless Containers/Services

Docker Volumes and Stateful Persistence

Persistent and Ephemeral Volumes

Volumes versus Filesystem and Images

8. CI/CD Pipeline

8. CI/CD Pipeline

Integrating GitHub and Jenkins

Integrating Jenkins and Docker Hub

9. Docker Swarm

9. Docker Swarm

How Docker Swarm Works?

Working with Docker Swarm

Troubleshooting Swarm Nodes

Deploying Swarm Deployments from Docker Compose

Swarm Service Rolling Updates

Managing Secrets and Configurations with Docker Swarm

Managing Swarm with Swarmpit

10. Kubernetes

Kubernetes Design

The Kubernetes API and Access

Kubernetes Resources

Kubernetes Package Manager: Helm

11. Docker Security

11. Docker Security

Privileged and Root User Access in Containers

Signing and Verifying Docker Images

Docker Image Security Scans

Scanning Images Locally Using Anchore Security Scan

Utilizing SaaS Security Scans with Snyk

Using Container Security Profiles

12. Best Practices

12. Best Practices

Working with Container Resources

Managing Container CPU Resources

Managing Container Memory Resources

Managing the Container Disk's Read and Write Resources

Container Resources and Docker Compose

Best Practices in Docker

Enforcing Docker Best Practices in Your Code

13. Monitoring Docker Metrics

13. Monitoring Docker Metrics

Monitoring Environment Metrics with Prometheus

Monitoring Docker Containers with Prometheus

Understanding the Prometheus Query Language

Performing PromQL Queries

Using Prometheus Exporters

Extending Prometheus with Grafana

14. Collecting Container Logs

14. Collecting Container Logs

Introducing Splunk

Installing and Running Splunk on Docker

Getting Container Logs into Splunk

Working with the Splunk Query Language

Splunk App and Saved Searches

15. Extending Docker with Plugins

15. Extending Docker with Plugins

Plugin Management

Authorization Plugins

Network Plugins

Appendix

1. Running My First Docker Container

2. Getting Started with Dockerfiles

3. Managing Your Docker Images

4. Multi-Stage Dockerfiles

5. Composing Environments with Docker Compose

6. Introduction to Docker Networking

7. Docker Storage

8. Service Discovery

9. Docker Swarm

11. Docker Security

12. Best Practices

13. Monitoring Docker Metrics

14. Collecting Container Logs

15. Extending Docker with Plugins

Customer Reviews

5 (1)

5 star

100%

4 star

0

3 star

0

2 star

0

1 star

0

11. Docker Security

Overview

In this chapter, we will give you the information you need to make sure your containers are secure and do not pose a security risk to the people using the applications running on them. You will work with privileged and non-privileged containers and learn why you should not be running your containers under the root user. This chapter will help you verify whether images are from a trusted source, using a signing key. You will also set up a security scan for your Docker images, ensuring your images are safe for use and distribution. You will work with AppArmor to further secure your containers by using them and Security Computing Mode (seccomp) for Linux to create and use seccomp profiles with your Docker images.