Quickstart containers Understand the architecture

Installation on Mac OS X Installation on Windows

Installation on Ubuntu Installation on Red Hat Enterprise Linux Installation on CentOS Installation on Fedora Installation on Debian Installation on Arch Linux Installation on CRUX Linux Installation on FrugalWare Installation on Gentoo Installation on Oracle Linux Installation on openSUSE and SUSE Linux Enterprise

Choose how to install Example: Manual install on cloud provider Example: Use Docker Machine to provision cloud hosts

Installation from binaries

Introduction

Hello world in a container Run a simple application Build your own images Network containers Manage data in containers Store images on Docker Hub

Best practices for writing Dockerfiles Create a base image Image management

Understand images, containers, and storage drivers Select a storage driver AUFS storage driver in practice Btrfs storage in practice Device mapper storage in practice OverlayFS storage in practice ZFS storage in practice

Docker container networking Work with network commands Get started with multi-host networking Configure container DNS in user-defined networks Default bridge network

Apply custom metadata

Automatically start containers Control and configure Docker with systemd PowerShell DSC Usage Process management with CFEngine Using Chef Using Puppet Using Supervisor with Docker Configuring and running Docker Runtime metrics Link via an ambassador container

Configuring Logging Drivers Amazon CloudWatch Logs logging driver Log tags for logging driver Fluentd logging driver Splunk logging driver journald logging driver

Run a local registry mirror

Docker security Protect the Docker daemon socket Using certificates for repository client verification

Content trust in Docker Automation with content trust Deploying Notary Manage keys for content trust Play in a content trust sandbox

AppArmor security profiles for Docker Seccomp security profiles for Docker

Access authorization plugin Extending Engine with plugins Docker network driver plugins Volume plugins Plugins API

Dockerizing MongoDB Dockerizing PostgreSQL Dockerizing a CouchDB service Dockerizing a Couchbase service Dockerizing a Node.js web app Dockerizing a Redis service Dockerizing a Riak service Dockerizing an SSH service Dockerizing an apt-cacher-ng service

Dockerfile reference Docker run reference

Use the Docker command line daemon attach build commit cp create diff events exec export history images import info inspect kill load login logout logs network connect network create network disconnect network inspect network ls network rm pause port ps pull push rename restart rm rmi run save search start stats stop tag top unpause update version volume create volume inspect volume ls volume rm wait

Remote API Remote API v1.22 Remote API v1.21 Remote API v1.20 Remote API v1.19 Remote API v1.18 Remote API v1.17 Remote API v1.16 Remote API v1.15 Remote API v1.14 Remote API client libraries docker.io accounts API

Migrate to Engine 1.10 Breaking changes Deprecated Engine Features FAQ

Swarm Overview How to get Swarm Evaluate Swarm in a sandbox Plan for Swarm in production Build a Swarm cluster for production

Learn the application architecture Deploy network infrastructure Setup cluster resources Deploy the application Troubleshoot the application

High availability in Swarm Swarm and container networks Discovery Provision with Machine

Filters Strategies

Overview Docker Swarm with TLS Configure Docker Swarm for TLS

create help join list manage swarm

Docker Swarm API

Overview of Docker Compose Install Compose Getting Started Using Compose with Swarm Quickstart: Compose and Django Quickstart: Compose and Rails Quickstart: Compose and WordPress Extending Services in Compose Networking in Compose Using Compose in Production Compose File Reference

Overview of docker-compose CLI CLI Environment Variables build config create down events help kill logs pause port ps pull restart rm run scale start stop unpause up

Command-line Completion Link Environment Variables Controlling startup order Frequently Asked Questions

Introducing Docker Hub Your Docker Hub account Teams & Organizations Repositories on Docker Hub Automated Builds Webhooks for automated builds Automated Builds with Bitbucket Automated Builds from GitHub Official Repositories on Docker Hub

Overview Trusted Registry

Install Docker Subscription for AWS (BYOL)) Install Docker Engine for AWS AMI (BDS) Install Trusted Registry for AWS AMI (BDS) Install on Microsoft Azure Install the Trusted Registry offline Manually Install the CS Docker Engine Manually install Trusted Registry Upgrade Trusted Registry and the CS Engine

Configuration overview Configure general settings Security configuration Storage configuration Auth configuration

Quick-start: Basic Workflow User guide Admin tasks Account and repository management Remove an image and garbage collection Trusted Registry License Support

Overview v1.3.3 API v1.4.0 API

Trusted Registry release notes Prior Trusted Registry release notes CS Engine release notes Prior CS Engine release notes

Release Notes

Introducing Docker Cloud Link to a Cloud Service Provider Link your Amazon Web Services account Link your DigitalOcean account Link your Microsoft Azure account Link your Packet account Link your SoftLayer account Set up self-hosted nodes Deploy your first node Deploy your first service

Learn about Dockerfiles and Docker Cloud Back up data volumes Create a proxy or load balancer Install the Deploy to Docker Cloud button Integrate with Slack Push images to Docker Cloud SSHing into a Docker Cloud-managed node Upgrade Docker Engine on a node Use the Docker Cloud Agent Using the Docker Cloud CLI

Introduction to deploying a Golang app Set up Prepare the app Push a Docker image to Docker Cloud's Registry Deploy the app as a Docker Cloud service Define environment variables Scale the service View logs Load-balance the service Provision a data backend for your service

Deploy a Python app Set up Python application Prepare the Python application Push an image to Docker Cloud's Registry Deploy the app as a Docker Cloud service Define environment variables Scale the service View logs Load-balance a Python service Provision a data backend for a Python service Data management with Volumes Python service stacks

Autodestroy Automated build Automated repository tests Automatic Container Restart Autoredeploy Deployment tags Manage service stacks Publish and expose service or container ports Redeploy running services Schedule a deployment Service API Roles Service discovery Spawn new containers Stack YAML reference Use triggers Work with data volumes

Known Issues in Docker Cloud Using Docker Cloud and Packet.net Using Docker Cloud on AWS

API reference

Machine Overview Install Machine Get started with a local VM Provision hosts in the cloud

Provision Digital Ocean Droplets Provision AWS EC2 Instances

Machine concepts and help Migrate from Boot2Docker to Machine

active config create env help inspect ip kill ls provision regenerate-certs restart rm scp ssh start status stop upgrade url

Driver options and operating system defaults Amazon Web Services Digital Ocean Generic Google Compute Engine IBM Softlayer Microsoft Azure Microsoft Hyper-V OpenStack Oracle VirtualBox Rackspace VMware Fusion VMware vCloud Air VMware vSphere exoscale

Command-line Completion

Docker Universal Control Plane Evaluation installation Plan a production installation Install UCP for production Upgrade UCP Deploy an application Integrate with Trusted Registry Set up container networking Set up high availability UCP Key/Value Store Backends

Monitor and troubleshoot UCP Manage and authorize users

dump-certs engine-discovery fingerprint help images install join uninstall upgrade

Get support Release Notes

Toolbox Overview

Kitematic User Guide: Intro & Overview Set up an Nginx web server Set up a Minecraft Server Creating a Local RethinkDB Database for Development Frequently Asked Questions Known Issues

Registry Overview Understanding the Registry Deploying a registry server Configuring a registry Working with notifications Recipes

HTTP API V2 Storage Drivers Token Authentication Implementation Token Authentication Specification

Getting help

Getting started with Notary Use the Notary client Understand the service architecture Running a Notary service

Server Configuration Signer Configuration Client Configuration Common Server and Signer Configurations

Notary Changelog

Quickstart contribution

README first Get the required software Set up for development on Windows Configure Git for contributing Work with a development container Run tests and test documentation

Understand how to contribute Find and claim an issue Work on your issue Create a pull request (PR) Participate in the PR review Advanced contributing Coding style checklist

Organize a Docker Meetup Organize our issues Support the community Testing contributions

Get started Find an issue Set up for Kitematic development Develop in Kitematic (work on an issue) Create a pull request (PR) Where to learn more

Docker Governance Advisory Board Board member profiles Code of conduct

FAQ for contributors Where to chat or get help Style guide for Docker documentation

Docker Release Notes Docker Glossary

Version 1.9 Version 1.8 Version 1.7 Version 1.6 Version 1.5 Version 1.4

Amazon Web Services

Create machines on Amazon Web Services.

To create machines on Amazon Web Services, you must supply two parameters: the AWS Access Key ID and the AWS Secret Access Key.

Configuring credentials

Before using the amazonec2 driver, ensure that you’ve configured credentials.

AWS credential file

One way to configure credentials is to use the standard credential file for Amazon AWS ~/.aws/credentials file, which might look like:

[default]
aws_access_key_id = AKID1234567890
aws_secret_access_key = MY-SECRET-KEY

You can learn more about the credentials file from this blog post.

This is the simplest case, you can then create a new machine with:

$ docker-machine create --driver amazonec2 aws01

Command line flags

Alternatively, you can use the flags --amazonec2-access-key and --amazonec2-secret-key on the command line:

$ docker-machine create --driver amazonec2 --amazonec2-access-key AKI******* --amazonec2-secret-key 8T93C*******  aws01

Environment variables

You can use environment variables:

$ export AWS_ACCESS_KEY_ID=AKID1234567890
$ export AWS_SECRET_ACCESS_KEY=MY-SECRET-KEY
$ docker-machine create --driver amazonec2 aws01

Options

--amazonec2-access-key: Your access key id for the Amazon Web Services API.
--amazonec2-secret-key: Your secret access key for the Amazon Web Services API.
--amazonec2-session-token: Your session token for the Amazon Web Services API.
--amazonec2-ami: The AMI ID of the instance to use.
--amazonec2-region: The region to use when launching the instance.
--amazonec2-vpc-id: Your VPC ID to launch the instance in.
--amazonec2-zone: The AWS zone to launch the instance in (i.e. one of a,b,c,d,e).
--amazonec2-subnet-id: AWS VPC subnet id.
--amazonec2-security-group: AWS VPC security group name.
--amazonec2-tags: AWS extra tag key-value pairs (comma-separated, e.g. key1,value1,key2,value2).
--amazonec2-instance-type: The instance type to run.
--amazonec2-device-name: The root device name of the instance.
--amazonec2-root-size: The root disk size of the instance (in GB).
--amazonec2-volume-type: The Amazon EBS volume type to be attached to the instance.
--amazonec2-iam-instance-profile: The AWS IAM role name to be used as the instance profile.
--amazonec2-ssh-user: The SSH Login username, which must match the default SSH user set in the ami used.
--amazonec2-request-spot-instance: Use spot instances.
--amazonec2-spot-price: Spot instance bid price (in dollars). Require the --amazonec2-request-spot-instance flag.
--amazonec2-use-private-address: Use the private IP address for docker-machine, but still create a public IP address.
--amazonec2-private-address-only: Use the private IP address only.
--amazonec2-monitoring: Enable CloudWatch Monitoring.
--amazonec2-use-ebs-optimized-instance: Create an EBS Optimized Instance, instance type must support it.
--amazonec2-ssh-keypath: Path to Private Key file to use for instance. Matching public key with .pub extension should exist

Environment variables and default values:

CLI option	Environment variable	Default
`--amazonec2-access-key`	`AWS_ACCESS_KEY_ID`	-
`--amazonec2-secret-key`	`AWS_SECRET_ACCESS_KEY`	-
`--amazonec2-session-token`	`AWS_SESSION_TOKEN`	-
`--amazonec2-ami`	`AWS_AMI`	`ami-5f709f34`
`--amazonec2-region`	`AWS_DEFAULT_REGION`	`us-east-1`
`--amazonec2-vpc-id`	`AWS_VPC_ID`	-
`--amazonec2-zone`	`AWS_ZONE`	`a`
`--amazonec2-subnet-id`	`AWS_SUBNET_ID`	-
`--amazonec2-security-group`	`AWS_SECURITY_GROUP`	`docker-machine`
`--amazonec2-tags`	`AWS_TAGS`	-
`--amazonec2-instance-type`	`AWS_INSTANCE_TYPE`	`t2.micro`
`--amazonec2-device-name`	`AWS_DEVICE_NAME`	`/dev/sda1`
`--amazonec2-root-size`	`AWS_ROOT_SIZE`	`16`
`--amazonec2-volume-type`	`AWS_VOLUME_TYPE`	`gp2`
`--amazonec2-iam-instance-profile`	`AWS_INSTANCE_PROFILE`	-
`--amazonec2-ssh-user`	`AWS_SSH_USER`	`ubuntu`
`--amazonec2-request-spot-instance`	-	`false`
`--amazonec2-spot-price`	-	`0.50`
`--amazonec2-use-private-address`	-	`false`
`--amazonec2-private-address-only`	-	`false`
`--amazonec2-monitoring`	-	`false`
`--amazonec2-use-ebs-optimized-instance`	-	`false`
`--amazonec2-ssh-keypath`	`AWS_SSH_KEYPATH`	-

Default AMIs

By default, the Amazon EC2 driver will use a daily image of Ubuntu 15.10 LTS.

Region	AMI ID
ap-northeast-1	ami-b36d4edd
ap-southeast-1	ami-1069af73
ap-southeast-2	ami-1d336a7e
cn-north-1	ami-79eb2214
eu-west-1	ami-8aa67cf9
eu-central-1	ami-ab0210c7
sa-east-1	ami-185de774
us-east-1	ami-26d5af4c
us-west-1	ami-9cbcd2fc
us-west-2	ami-16b1a077
us-gov-west-1	ami-b0bad893

Security Group

Note that a security group will be created and associated to the host. This security group will have the following ports opened inbound:

ssh (22/tcp)
docker (2376/tcp)
swarm (3376/tcp), only if the node is a swarm master

If you specify a security group yourself using the --amazonec2-security-group flag, the above ports will be checked and opened and the security group modified. If you want more ports to be opened, like application specific ports, use the aws console and modify the configuration manually.

VPC ID

We determine your default vpc id at the start of a command. In some cases, either because your account does not have a default vpc, or you don’t want to use the default one, you can specify a vpc with the --amazonec2-vpc-id flag.

To find the VPC ID:

Login to the AWS console
Go to Services -> VPC -> Your VPCs.
Locate the VPC ID you want from the VPC column.
Go to Services -> VPC -> Subnets. Examine the Availability Zone column to verify that zone a exists and matches your VPC ID.

For example, us-east1-a is in the a availability zone. If the a zone is not present, you can create a new subnet in that zone or specify a different zone when you create the machine.

To create a machine with a non-default vpc-id:

$ docker-machine create --driver amazonec2 --amazonec2-access-key AKI******* --amazonec2-secret-key 8T93C********* --amazonec2-vpc-id vpc-****** aws02

This example assumes the VPC ID was found in the a availability zone. Use the--amazonec2-zone flag to specify a zone other than the a zone. For example, --amazonec2-zone c signifies us-east1-c.

Custom AMI and SSH username

The default SSH username for the default AMIs is ubuntu.

You need to change the SSH username only if the custom AMI you use has a different SSH username.

You can change the SSH username with the --amazonec2-ssh-user according to the AMI you selected with the --amazonec2-ami.

On this page:

Dec	MAR	Oct
	05
2015	2016	2017