- Docker on Windows
- Elton Stoneman
- 500字
- 2021-07-02 19:53:17
Docker as a Windows Service
You can use Docker for Windows on Windows 10 and Windows Server 2016, and it's great for development and test environments. For production environments where you have a headless server with no UI, you can install Docker using a PowerShell module.
On a new installation of Windows Server 2016 core, use the sconfig tool to install all the latest Windows updates, and then run these PowerShell commands:
Install-Module -Name DockerMsftProvider -Repository PSGallery -Force
Install-Package -Name docker -ProviderName DockerMsftProvider
This will configure the server with the necessary Windows features, install Docker, and set it up to run as a Windows service. Depending on how many Windows updates were installed, you may need to reboot the server:
Restart-Computer -Force
When the server is online, check whether Docker is running with docker version, and then try to run a container from the sample image for this chapter:
docker container run dockeronwindows/ch01-whale
I use this configuration for some of my environments—running Windows Server 2016 Core in a lightweight VM, which has only Docker installed. You can use Docker on the server by connecting with Remote Desktop, or you can configure the Docker service to allow remote connections. This is a more advanced setup, but it does give you secure remote access.
It's best to set up the Docker service so that communication with the client is secured using TLS. Clients can connect only if they have the right TLS certificates to authenticate with the service. You can set this up by running these PowerShell commands inside the VM, supplying the VM's external IP address:
$ipAddress = '<vm-ip-address>'
mkdir -p C:\certs\client
docker container run --rm `
--env SERVER_NAME=$(hostname) `
--env IP_ADDRESSES=127.0.0.1,$vm-ip-address `
--volume 'C:\ProgramData\docker:C:\ProgramData\docker' `
--volume 'C:\certs\client:C:\Users\ContainerAdministrator\.docker' `
stefanscherer/dockertls-windows
Restart-Service docker
When this command completes, it will have configured the Docker service to allow only secure remote connections and will also have created the certificates that the client needs to use to connect. Copy these certificates from C:\certs\client on the VM onto the machine where you want to use the Docker client.
On the client machine, you can set environment variables to point the Docker client to use a remote Docker service. These commands will set up a remote connection to the VM (assuming you have used the same path for the certificate files on the client):
$ipAddress = '<vm-ip-address>'
$env:DOCKER_HOST='tcp://$($ipAddress):2376'
$env:DOCKER_TLS_VERIFY='1'
$env:DOCKER_CERT_PATH='C:\certs\client'
You can use this approach to securely connect to any remote Docker service. If you don't have access to Windows 10 or Windows Server 2016, you can create a VM on the cloud and connect to it using the same commands.
- 流量的秘密:Google Analytics網站分析與優化技巧(第2版)
- Oracle 12c中文版數據庫管理、應用與開發實踐教程 (清華電腦學堂)
- INSTANT Sencha Touch
- Full-Stack React Projects
- Oracle JDeveloper 11gR2 Cookbook
- C語言課程設計
- Spring Boot Cookbook
- Arduino計算機視覺編程
- Python數據可視化之美:專業圖表繪制指南(全彩)
- 硬件產品設計與開發:從原型到交付
- Scala Functional Programming Patterns
- Python 3 Object:oriented Programming(Second Edition)
- ASP.NET求職寶典
- Java Web開發基礎與案例教程
- Backbone.js Patterns and Best Practices