Duration

3 days

Audience:

Employees of federal, state and local governments; and businesses working with the government.

Course Description

Linux containers are changing the way companies think about service development and deployment. Containers play a vital role in the modern data-center, and Docker is leading the way. This course covers all the core features of Docker including: container creation and management, interacting with Docker hub, using Dockerfile to create and manage custom images, advanced Docker networking (how to safely expose container services to the world, and link containers), the use of Docker volumes to manage persistent data, and Docker Compose to build multi-container applications. Emphasis is placed on best practices and how to secure Docker installations and containers. The course culminates with comprehensive labs where students use Docker, Git, and a continuous integration server to automate the testing of containerized applications.

Many large companies are moving an increasing number of applications to run inside containers. Containers can provide a high level of security while also making maximal use of hardware allowing higher density than traditional VMs. Docker is a dominant force in Linux containers and the core building block for nearly all higher level container management systems. This training will get sysadmins proficient with Docker so that they can immediately be productive as organizations continue to move applications onto containers.

Prerequisites

Proficiency with the Linux CLI. A broad understanding of Linux system administration.

Supported Distributions

Red Hat Enterprise Linux 7
Ubuntu 16.04 LTS

Course Outline

  1. CONTAINER TECHNOLOGY OVERVIEW
    1. Application Management Landscape
    2. Application Isolation
    3. Resource Measurement and Control
    4. Container Security
    5. OverlayFS Overview
    6. Container Security
    7. Open Container Initiative
    8. Docker Alternatives
    9. Docker Ecosystem
    10. Docker Ecosystem (cont.)

    LAB TASKS

    1. Container Concepts runC
    2. Container Concepts Systemd
  2. INSTALLING DOCKER
    1. Installing Docker
    2. Docker Architecture
    3. Starting the Docker Daemon
    4. Docker Daemon Configuration
    5. Docker Control Socket
    6. Enabling TLS for Docker
    7. Validating Docker Install

    LAB TASKS

    1. Installing Docker
    2. Protecting Docker with TLS
  3. MANAGING CONTAINERS
    1. Creating a New Container
    2. Listing Containers
    3. Managing Container Resources
    4. Running Commands in an Existing Container
    5. Interacting with a Running Container
    6. Stopping, Starting, and Removing Containers
    7. Copying files in/out of Containers
    8. Inspecting and Updating Containers
    9. Docker Output Filtering & Formatting

    LAB TASKS

    1. Managing Containers
    2. Configure a docker container to start at boot.
  4. MANAGING IMAGES
    1. Docker Images
    2. Listing and Removing Images
    3. Searching for Images
    4. Downloading Images
    5. Uploading Images
    6. Export/Import Images
    7. Save/Load Images
    8. Committing Changes

    LAB TASKS

    1. Docker Images
    2. Docker Platform Images
  5. CREATING IMAGES WITH DOCKERFILE
    1. Dockerfile
    2. Caching
    3. docker image build
    4. Dockerfile Instructions
    5. ENV and WORKDIR
    6. Running Commands
    7. Getting Files into the Image
    8. Defining Container Executable
    9. HEALTHCHECK
    10. Best Practices
    11. Multi-Stage builds with Dockerfile

    LAB TASKS

    1. Dockerfile Fundamentals
    2. Optimizing Image Build Size
    3. Image Builds and Caching
  6. DOCKER VOLUMES
    1. Volume Concepts
    2. The docker volume Command
    3. Creating and Using Internal Volumes
    4. Internal Volume Drivers
    5. Removing Volumes
    6. Creating and Using External Volumes
    7. SELinux Considerations
    8. Mapping Devices

    LAB TASKS

    1. Docker Internal Volumes
    2. Docker External Volumes
  7. DOCKER COMPOSE/SWARM
    1. Writing YAML Files
    2. Concepts
    3. Compose CLI
    4. Defining a Service Set
    5. Compose Versions
    6. Docker Engine Swarm Mode
    7. Docker Swarm Terms
    8. Docker Swarm Command Overview
    9. Creating a Swarm
    10. Creating Services
    11. Creating Secrets
    12. Stack Files
    13. Stack Command
    14. Swarm Placements
    15. Swarm Resource Limits & Reservations
    16. Swarm Networking
    17. Swarm Networking Troubleshooting

    LAB TASKS

    1. Docker Compose
    2. Docker Engine Swarm Mode
  8. DOCKER NETWORKING
    1. Overview
    2. Data-Link Layer Details
    3. Network Layer Details
    4. Hostnames and DNS
    5. Service Reachability
    6. Container to Container Communication
    7. Container to Container: Links (deprecated)
    8. Container to Container: Private Network
    9. Managing Private Networks
    10. Remote Host to Container

    LAB TASKS

    1. Docker Networking
    2. Exposing Ports
    3. Docker Networking
  9. DOCKER LOGGING
    1. Docker Logging
    2. Docker Logging with json-file and journald
    3. Docker Logging with syslog
    4. Docker Logging with Graylog or Logstash
    5. Docker Logging with Fluentd
    6. Docker Logging with Amazon or Google
    7. Docker Logging with Splunk

    LAB TASKS

    1. Logging to syslog
  1. DOCKER REGISTRY LAB TASKS
    1. Docker Registry
    2. Docker Registry (secured)
    3. Docker Content Trust