Book Image

The Docker Workshop

By : Vincent Sesto, Onur Yılmaz, Sathsara Sarathchandra, Aric Renzo, Engy Fouda
5 (1)
Book Image

The Docker Workshop

5 (1)
By: Vincent Sesto, Onur Yılmaz, Sathsara Sarathchandra, Aric Renzo, Engy Fouda

Overview of this book

No doubt Docker Containers are the future of highly-scalable software systems and have cost and runtime efficient supporting infrastructure. But learning it might look complex as it comes with many technicalities. This is where The Docker Workshop will help you. Through this workshop, you’ll quickly learn how to work with containers and Docker with the help of practical activities.? The workshop starts with Docker containers, enabling you to understand how it works. You’ll run third party Docker images and also create your own images using Dockerfiles and multi-stage Dockerfiles. Next, you’ll create environments for Docker images, and expedite your deployment and testing process with Continuous Integration. Moving ahead, you’ll tap into interesting topics and learn how to implement production-ready environments using Docker Swarm. You’ll also apply best practices to secure Docker images and to ensure that production environments are running at maximum capacity. Towards the end, you’ll gather skills to successfully move Docker from development to testing, and then into production. While doing so, you’ll learn how to troubleshoot issues, clear up resource bottlenecks and optimize the performance of services. By the end of this workshop, you’ll be able to utilize Docker containers in real-world use cases.

Related Content you might be interested in

Current Title:

Small book image
The Docker Workshop
Vincent Sesto | Onur Yılmaz | Sathsara Sarathchandra | Aric Renzo | Engy Fouda
Oct, 2020 | 792 pages
Small book image
Docker Deep Dive.
Nigel Poulton
Jul, 2023 | 266 pages
Small book image
Learning Docker
Jeeva S Chelladhurai | Pethuru Raj | Vinod Singh
May, 2017 | 300 pages
Small book image
Docker Deep Dive
Nigel Poulton
Oct, 2020 | 250 pages
Table of Contents (17 chapters)
Preface
About the Book
1
1. Running My First Docker Container
1. Running My First Docker Container
Introduction
Advantages of Using Docker
Docker Engine
Running Docker Containers
Managing Docker Containers
Attaching to Containers Using the attach Command
Summary
Free Chapter
2
2. Getting Started with Dockerfiles
2. Getting Started with Dockerfiles
Introduction
What Is a Dockerfile?
Common Directives in Dockerfiles
Building Docker Images
Other Dockerfile Directives
Summary
3
3. Managing Your Docker Images
3. Managing Your Docker Images
Introduction
Docker Layers and Caching
Creating Base Docker Images
Docker Image Naming and Tagging
Using the latest Tag in Docker
Docker Image Tagging Policies
Storing and Publishing Your Docker Images
The Docker Registry
Summary
4
4. Multi-Stage Dockerfiles
4. Multi-Stage Dockerfiles
Introduction
Normal Docker Builds
What Is the Builder Pattern?
Introduction to Multi-Stage Dockerfiles
Dockerfile Best Practices
Summary
5
5. Composing Environments with Docker Compose
5. Composing Environments with Docker Compose
Introduction
Docker Compose CLI
Configuration of Services
Service Dependency
Summary
6
6. Introduction to Docker Networking
6. Introduction to Docker Networking
Introduction
Native Docker DNS
Native Docker Network Drivers
Docker Overlay Networking
Non-Native Docker Networks
Summary
7
7. Docker Storage
7. Docker Storage
Introduction
The Container Life Cycle
Stateful versus Stateless Containers/Services
Docker Volumes and Stateful Persistence
Persistent and Ephemeral Volumes
Volumes versus Filesystem and Images
Summary
8
8. CI/CD Pipeline
8. CI/CD Pipeline
Introduction
What Is CI/CD?
Integrating GitHub and Jenkins
Integrating Jenkins and Docker Hub
Summary
9
9. Docker Swarm
9. Docker Swarm
Introduction
How Docker Swarm Works?
Working with Docker Swarm
Troubleshooting Swarm Nodes
Deploying Swarm Deployments from Docker Compose
Swarm Service Rolling Updates
Managing Secrets and Configurations with Docker Swarm
Managing Swarm with Swarmpit
Summary
10
10. Kubernetes
10. Kubernetes
Introduction
Kubernetes Design
The Kubernetes API and Access
Kubernetes Resources
Kubernetes Package Manager: Helm
Summary
11
11. Docker Security
11. Docker Security
Introduction
Privileged and Root User Access in Containers
Signing and Verifying Docker Images
Docker Image Security Scans
Scanning Images Locally Using Anchore Security Scan
Utilizing SaaS Security Scans with Snyk
Using Container Security Profiles
Summary
12
12. Best Practices
12. Best Practices
Introduction
Working with Container Resources
Managing Container CPU Resources
Managing Container Memory Resources
Managing the Container Disk's Read and Write Resources
Container Resources and Docker Compose
Best Practices in Docker
Enforcing Docker Best Practices in Your Code
Summary
13
13. Monitoring Docker Metrics
13. Monitoring Docker Metrics
Introduction
Monitoring Environment Metrics with Prometheus
Monitoring Docker Containers with Prometheus
Understanding the Prometheus Query Language
Performing PromQL Queries
Using Prometheus Exporters
Extending Prometheus with Grafana
Summary
14
14. Collecting Container Logs
14. Collecting Container Logs
Introduction
Introducing Splunk
Installing and Running Splunk on Docker
Getting Container Logs into Splunk
Working with the Splunk Query Language
Splunk App and Saved Searches
Summary
15
15. Extending Docker with Plugins
15. Extending Docker with Plugins
Introduction
Plugin Management
Plugin API
Authorization Plugins
Network Plugins
Volume Plugins
Summary
Appendix
1. Running My First Docker Container
2. Getting Started with Dockerfiles
3. Managing Your Docker Images
4. Multi-Stage Dockerfiles
5. Composing Environments with Docker Compose
6. Introduction to Docker Networking
7. Docker Storage
8. Service Discovery
9. Docker Swarm
10. Kubernetes
11. Docker Security
12. Best Practices
13. Monitoring Docker Metrics
14. Collecting Container Logs
15. Extending Docker with Plugins

Utilizing SaaS Security Scans with Snyk

Snyk is an online SaaS application that provides an easy-to-use interface that allows you to scan your Docker images for vulnerabilities. Although Snyk is a paid application, it does provide a free tier with a large amount of functionality to the user. It provides unlimited tests to open source projects and allows GitHub and GitLab integration, with remediation to open source projects and continuous monitoring. You are limited to the amount of container vulnerability testing that is allowed.

The following exercise will run through using the web interface providing a guide on how to register for an account and then add your container to be scanned for security vulnerabilities.

Exercise 11.04: Setting up a Snyk Security Scan

In this exercise, you will use your web browser to work with Snyk to start implementing security scans on our security-app image:

  1. Create an account with Snyk if you have not used Snyk before or do not have...
Previous Section
End of Section 7
Next Section