suse1.5安装docker-ce19.03.13版本
官方不支持suse系统进行类似于yum、apt-get方式安装docker-ce. 所有我们按照源码方式安装。
前提:
| 软件 | 版本 |
|---|---|
| SUSE | SUSE Linux Enterprise Server for SAP Applications 15 SP1 (x86_64) |
| Docker-ce | 19.03.13 |
1、下载docker-ce压缩包
wget https://download.docker.com/linux/static/stable/x86_64/docker-19.03.13.tgz
2、解压到/usr/local/bin目录下
tar -zxvf docker-19.03.13.tgz
cp docker/* /usr/local/bin/.
3、编辑docker.service文件
新建/usr/lib/systemd/system/docker.service文件,添加如下参数
[Unit]
Description=Docker Application Container Engine
Documentation=https://docs.docker.com
BindsTo=containerd.service
After=network-online.target containerd.service
Wants=network-online.target
Requires=docker.socket
[Service]
Type=notify
# the default is not to use systemd for cgroups because the delegate issues still
# exists and systemd currently does not support the cgroup feature set required
# for containers run by docker
ExecStart=/usr/local/bin/dockerd -H fd:// --containerd=/run/containerd/containerd.sock
ExecReload=/bin/kill -s HUP $MAINPID
TimeoutSec=0
RestartSec=2
Restart=always
# Note that StartLimit* options were moved from "Service" to "Unit" in systemd 229.
# Both the old, and new location are accepted by systemd 229 and up, so using the old location
# to make them work for either version of systemd.
StartLimitBurst=3
# Note that StartLimitInterval was renamed to StartLimitIntervalSec in systemd 230.
# Both the old, and new name are accepted by systemd 230 and up, so using the old name to make
# this option work for either version of systemd.
StartLimitInterval=60s
# Having non-zero Limit*s causes performance problems due to accounting overhead
# in the kernel. We recommend using cgroups to do container-local accounting.
LimitNOFILE=infinity
LimitNPROC=infinity
LimitCORE=infinity
# Comment TasksMax if your systemd version does not support it.
# Only systemd 226 and above support this option.
TasksMax=infinity
# set delegate yes so that systemd does not reset the cgroups of docker containers
Delegate=yes
# kill only the docker process, not all processes in the cgroup
KillMode=process
[Install]
WantedBy=multi-user.target
赋予权限
chmod +x /usr/lib/systemd/docker.service
4、编辑docker.socket文件
新建/usr/lib/systemd/system/docker.socket文件,添加如下参数
[Unit]
Description=Docker Socket for the API
PartOf=docker.service
[Socket]
ListenStream=/var/run/docker.sock
SocketMode=0660
SocketUser=docker
SocketGroup=docker
[Install]
WantedBy=sockets.target
赋予权限:
chmod +x /usr/lib/systemd/system/docker.socket
5、编辑containerd.service文件
新建/usr/lib/systemd/system/containerd.service文件,添加如下参数
[Unit]
Description=containerd container runtime
Documentation=https://containerd.io
[Service]
ExecStartPre=-/sbin/modprobe overlay
ExecStart=/usr/local/bin/containerd
Type=notify
Delegate=yes
KillMode=process
Restart=always
# Having non-zero Limit*s causes performance problems due to accounting overhead
# in the kernel. We recommend using cgroups to do container-local accounting.
LimitNPROC=infinity
LimitCORE=infinity
LimitNOFILE=1048576
# Comment TasksMax if your systemd version does not supports it.
# Only systemd 226 and above support this version.
TasksMax=infinity
[Install]
WantedBy=multi-user.target
赋予权限:
chmod +x /usr/lib/systemd/system/containerd.service
6、启动docker
创建docker用户和组
useradd docker
groupadd docker
usermod -aG docker docker
安装iptables
因为docker的网络net基于net做的。所以要安装iptables
zypper in iptables
启动docker
systemctl start docker
#加入开机自启动
systemctl enable docker
7、测试创建容器
docker run -it --rm alpine sh