| title | markdown2extras | markdown2linkpatternsfile |
|---|---|---|
SDC Docker User Guide |
tables, code-friendly, cuddled-lists, link-patterns |
link-patterns.txt |
Welcome to Docker on SmarDataCenter. The Docker Engine for SDC is currently in alpha and under heavy development. The current focus is stabilization and filling out support for running Docker containers.
This document is meant as a user guide for those getting started using a Docker on SmartDataCenter service, e.g. the beta service in Joyent's public cloud (details below). If you are interested in running or developing the Docker Engine for SDC, see the sdc-docker README.
The Docker Engine for SmartDataCenter treats the entire data center as a single Docker host. Each container is a SmartOS LX-branded zone. Benefits:
- Zones have a proven security track record for isolation.
- LX-branded zones provide the abilty to run Linux binaries in SmartOS zones, meaning you can use Docker images without modification and without the overhead of hardware-based virtualization.
- Overlay network support (VXLAN) means you have a private network between all your containers, across servers.
And the full stack is open source: sdc-docker, SmartDataCenter, and SmartOS.
A note for users of Joyent's public cloud: Joyent is hosting a beta of their Docker service. Please sign up at https://www.joyent.com/lp/preview and read on for the settings for the standard Docker client.
The Docker Engine for SDC is currently in alpha and under heavy development.
The current focus is on stabilization and filling out support for running
Docker containers. Support for building images (docker build) is forthcoming.
Please report issues,
give us feedback or discuss on #joyent IRC on freenode.net.
This section will use the current Joyent public cloud Docker beta for examples. Note that the same instructions hold for any sdc-docker standup.
The Docker Engine for SDC is all about using the docker CLI. So all that is
required is to set up an account with a SmartDataCenter cloud and to configure
your environment variables for the docker client.
- Install
docker. - Setup an account with the SmartDataCenter, in this case the Joyent Public Cloud.
- Run the 'sdc-docker-setup.sh' script to set the env.
If you have docker version 1.4.1 or higher then you can move on to the next step. Note: The minimum docker client version might be raised to 1.5.0.
$ docker --version
Docker version 1.4.1, build 5bc2ff8
Otherwise, please follow Docker's own installation instructions. Unfortunately, it's not Docker does not yet have a standalone client (i.e. you have to also install the Docker Engine, a.k.a. daemon, on your computer).
The SmartDataCenter CLI environment is not necessary for to use Docker on SDC,
but for beta testing it will be helpful. To test that your
SmartDataCenter client environment is configured, you can run sdc-getaccount:
$ sdc-getaccount
{
"id": "....387c",
"login": "jill",
"email": "jill@example.com",
"companyName": "Acme",
"firstName": "Jill",
...
}
If sdc-getaccount works, then move on to the next step. Otherwise:
- Create or sign in to your Joyent Cloud account,
- Add an SSH public key to your account. and,
- Install SDC CLI and configure the SDC env.
If you have one, use your existing SSH public key. If you don't have a key pair, you can create a new one via something like:
# Create an SSH public/private key pair of type "RSA", with no passphrase
# (you can add a passphrase if you like, drop the '-P ""').
ssh-keygen -t rsa -b 4096 -C "my-sdc-docker-key" -P "" -f ~/.ssh/sdc-docker.id_rsa
This will create:
~/.ssh/sdc-docker.id_rsa # your private key file
~/.ssh/sdc-docker.id_rsa.pub # your public key file
It is the public key, the ending .pub, that you want to upload via the "Import Public Key" button on your account page.
For more details on account setup and adding an SSH key, see the Joyent Cloud Getting Started documentation.
You can now set up the SDC command line tools (called node-smartdc). See the CloudAPI Getting Started documentation.
(For those using an SDC Docker standup other than the Joyent public cloud, see the User Management operator guide docs.)
Now that you have access to a SmartDataCenter, we will set up authentication
to the Docker host. SDC Docker uses Docker's TLS authentication. This section
will show you how to create a TLS client certificate from the SSH key you
created in the previous section. Then we'll configure docker to send that
client certificate to identify requests as coming from you.
We have a 'sdc-docker-setup.sh' script to help with this:
curl -O https://raw.githubusercontent.com/joyent/sdc-docker/master/tools/sdc-docker-setup.sh
sh sdc-docker-setup.sh <CLOUDAPI> <ACCOUNT> ~/.ssh/<PRIVATE_KEY_FILE>
For example, if you created an account with the "jill" login name and a key file "~/.ssh/sdc-docker.id_rsa" as in the previous section, then
sh sdc-docker-setup.sh https://us-east-3b.api.joyent.com jill ~/.ssh/sdc-docker.id_rsa
That should output something like the following:
Setting up Docker client for SDC using:
CloudAPI: https://us-east-3b.api.joyent.com
Account: jill
Key: /Users/localuser/.ssh/sdc-docker.id_rsa
If you have a pass phrase on your key, the openssl command will
prompt you for your pass phrase now and again later.
Verifying CloudAPI access.
CloudAPI access verified.
Generating client certificate from SSH private key.
writing RSA key
Wrote certificate files to /Users/localuser/.sdc/docker/jill
Get Docker host endpoint from cloudapi.
Docker service endpoint is: tcp://165.225.168.25:2376
* * *
Success. Set your environment as follows:
export DOCKER_CERT_PATH=/Users/localuser/.sdc/docker/jill
export DOCKER_HOST=tcp://165.225.168.25:2376
alias docker="docker --tls"
Then you should be able to run 'docker info' and see your account
name 'SDCAccount: jill' in the output.
Run those export and alias commands in your shell and you should now
be able to run docker:
$ docker info
Containers: 0
Images: 0
Storage Driver: sdc
SDCAccount: jill
Execution Driver: sdc-0.1.0
Operating System: SmartDataCenter
Name: us-east-3b
- where to go if hit troubles
- usage examples