Docker - Reference Materials

Course Lab Guide : Getting Started with Docker - Docker Tutorial

Run and Operate Containers Lab https://drive.google.com/file/d/1qW0MoxJil-

sPKsX4myCgMx68VRlmSO-s/view?usp=sharing
Building Images Lab https://drive.google.com/file/d/1_Gw_MQnq-
xoxqRDKsZysSv_yAM_eqbpz/view?usp=sharing
Building Image for Facebooc App Nano Project https://drive.google.com/file/d/
1PAhpwDkWriN01ght2QGt0b293pPwVnHF/view?usp=sharing
Docker Single Host Network Lab https://docker-tutorial.schoolofdevops.com/chapterx-
docker-networking/
Docker Networking Lab (PDF) https://drive.google.com/file/d/1PMDgpPE9a1zA612-
sqsL1bEsq_Yzxets/view?usp=sharing
Docker Compose Lab https://drive.google.com/file/d/1N78FHqONE-
v3BhqDZXRNZPSnERxaUJCY/view?usp=sharing

Networking

CNM and Libnetwork

https://github.com/docker/libnetwork/blob/master/docs/design.md

How VXLANs work ?

https://www.youtube.com/watch?v=Jqm_4TMmQz8

Linux Networking Fundamentals

https://events.static.linuxfound.org/sites/events/files/slides/2016%20-
%20Linux%20Networking%20explained_0.pdf

Docker Networking Deep Dive

https://www.slideshare.net/Docker/docker-networking-deep-dive?qid=29a3fb8a-
b558-4ae9-bb96-ec50ee461c7c&v=&b=&from_search=8

Overlay Tutorial
https://neuvector.com/network-security/docker-swarm-container-networking/

Docker Networking Tutorial - Learning by Practicing

https://www.securitynik.com/2016/12/docker-networking-internals-container.html

Swarm networks
https://docs.docker.com/v17.09/engine/swarm/networking/

Ip cheatsheet
https://access.redhat.com/sites/default/files/attachments/
rh_ip_command_cheatsheet_1214_jcs_print.pdf

Overlay issues
https://github.com/moby/moby/issues/30820

Network Troubleshooting
https://success.docker.com/article/troubleshooting-container-networking

Monitoring :

Kubernetes Proposes Monitoring Architecture : https://github.com/kubernetes/

community/blob/master/contributors/design-proposals/instrumentation/
monitoring_architecture.md

Swarmprom Stack: https://github.com/stefanprodan/swarmprom

Monitoring UCP
https://docs.docker.com/datacenter/ucp/1.1/monitor/monitor-ucp/

Docker Configurations

Docker Daemon Configs

https://docs.docker.com/config/daemon/
Troubleshooting

Article : Docker Troubleshooting

https://medium.com/@pimterry/5-ways-to-debug-an-exploding-docker-
container-4f729e2c0aa8

https://medium.com/@betz.mark/ten-tips-for-debugging-docker-containers-
cde4da841a1d

Troubleshooting Tips from a Docker Support Engineer

https://www.youtube.com/watch?v=DK1ew1HpmeY

Tips
Connect with shell
check logs

Where are docker daemon logs

https://stackoverflow.com/questions/30969435/where-is-the-docker-daemon-log?
utm_medium=organic&utm_source=google_rich_qa&utm_campaign=google_rich_qa

Docker daemon log on ubuntu with systems

sudo journalctl -fu docker.service

Raft ant other files

/var/lib/docker

Network Troubleshooting
https://success.docker.com/article/troubleshooting-container-networking

Utils
brctl
ip link
ip addr
iptables
ipvsadm
nsenter
 tcpdump

Kernel panics: https://unix.stackexchange.com/questions/66197/how-to-cause-kernel-

panic-with-a-single-command/67908#67908

Network Issues with Swarm

https://github.com/moby/moby/issues/35358
https://github.com/moby/moby/issues/33790

Docker Administration

Docker Admin Wiki by Aquasec

https://www.aquasec.com/wiki/display/containers/Docker+Administration

Storage

How to deal with the Union File Systems that use Docker (OverlayFS and AUFS)
https://ilearnedhowto.wordpress.com/2018/01/15/how-to-deal-with-the-union-file-
systems-that-use-docker-overlayfs-and-aufs/

Docker Security

VMs vs Docker Security: https://security.stackexchange.com/questions/169642/what-

makes-docker-more-secure-than-vms-or-bare-metal

~Privilege Escalation; ~ https://security.stackexchange.com/questions/152978/is-it-

possible-to-escalate-privileges-and-escaping-from-a-docker-container/153016#153016

~IBMs study on containers vs VMs security : ~ https://www.zdnet.com/article/which-is-

more-secure-containers-or-virtual-machines-the-answer-will-surprise-you/

~Containers vs VMs a security comparison: ~ https://www.infoworld.com/article/

3071679/linux-containers-vs-vms-a-security-comparison.html

~Are VMs more secure than containers? ~ https://www.infoworld.com/article/3197444/

are-vms-more-secure-than-containers.html

~How to secure container based environments: ~ https://www.twistlock.com/

2017/07/06/ultimate-guide-container-security/

https://www.twistlock.com/2017/06/12/4-security-best-practices/

Security Flaws

From https://forums.docker.com/t/root-user-or-non-root-user-inside-container/966/10
Actually, I’ve found that, if you can execute commands as root within a container, and that
container has write access to any filesystem on the host system, then I can root the host
system quite easily. We’re in the process of deciding how to deal with this issue here
before we allow docker to run in the general population, and so far, there hasn’t been a
suitable workaround. I’m really surprised that docker was designed with such an obvious
security flaw.

Volumes and Permission issues

https://stackoverflow.com/questions/31146818/issue-when-trying-to-write-to-a-mounted-
volume-from-inside-a-container-as-a-non?noredirect=1

Did in container has to match the one on the hosts, or you need to run as root ? See if
there is a solution

https://sysdig.com/blog/7-docker-security-vulnerabilities/

SWARM and UCP

UCP Architecture
https://docs.docker.com/datacenter/ucp/2.2/guides/architecture/

UCP Node States

https://docs.docker.com/ee/ucp/admin/monitor-and-troubleshoot/troubleshoot-node-
messages/#ucp-node-states

Troubleshooting UCP Cluster Matrix

https://success.docker.com/article/troubleshooting-a-ucp-22x-cluster
Raft
http://thesecretlivesofdata.com/raft/

Operate Swarm Nodes

https://docs.docker.com/engine/swarm/admin_guide/

SWARM and UCP Setup

Install Docker EE
https://docs.docker.com/install/linux/docker-ee/ubuntu/

Docker EE URL https://store.docker.com/my-content

UCP Setup
https://docs.docker.com/datacenter/ucp/1.1/installation/install-production/

Troubleshooting

Methodology
https://success.docker.com/article/swarm-troubleshooting-methodology

Backup and Disaster Recovery: https://docs.docker.com/ee/ucp/admin/backups-and-

disaster-recovery/

Misc

Monitoring Docker Containers

https://github.com/docker/labs/blob/master/developer-tools/java/chapters/ch10-
monitoring.adoc
Debugging Java Applications with Docker

https://github.com/docker/labs/tree/master/developer-tools/java-debugging

Docker Tutorials and Labs

https://github.com/docker/labs

Docker Security
https://github.com/docker/labs/blob/master/security/README.md

Common Docker Commands

https://github.com/docker/labs/blob/master/developer-tools/java/chapters/appa-
common-commands.adoc

Scheduler by Kelsey: https://youtu.be/HlAXp0-M6SY?t=621

#docker/reference