[維運] Container

[Docker] 在 Ubuntu 安裝 Docker

從 Install Docker Engine on Ubuntu 總結出腳本，直接執行就好： #!/bin/bash # Uninstall old versions sudo apt-get remove docker docker-engine docker.io containerd runc # Set up the repository # Update the apt package index and install packages to allow apt to use a repository over HTTPS sudo apt-get update sudo apt-get install \ ca-certificates \ curl \ gnupg \ lsb-release # Add Docker’s official GPG key sudo mkdir -p /etc/apt/keyrings curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg # set up the repository echo \ "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu \ $(lsb_release -cs) stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null # Install Docker Engine sudo apt-get update sudo apt-get install docker-ce docker-ce-cli containerd.io docker-compose-plugin -y # 把當前使用者加到 docker 群組 sudo usermod -aG docker ${USER} # Verify that the Docker Engine installation is successful by running the hello-world image sudo docker run hello-world Reference Install Docker Engine on Ubuntu

Tuesday, November 15, 2022 Read

[K8S] 自架 Kubernetes 使用 VM 模擬多台 Server

準備/安裝兩台 Server ( 使用 VM clone 然後修改 hostname ) 一台為 Master (主控)，另外一台為 Node ( 節點 ) 安裝 kubelet/kubeadm ( Master 與 node 皆要執行此步驟 ) # 設定 k8s server上網路 cat <<EOF | sudo tee /etc/sysctl.d/k8s.conf net.bridge.bridge-nf-call-ip6tables = 1 net.bridge.bridge-nf-call-iptables = 1 EOF sudo sysctl --system # 安裝 kubeadm / kubelet sudo apt-get update && sudo apt-get install -y apt-transport-https curl curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo apt-key add - cat <<EOF | sudo tee /etc/apt/sources.list.d/kubernetes.list deb https://apt.kubernetes.io/ kubernetes-xenial main EOF sudo apt-get update sudo apt-get install -y kubelet kubeadm kubectl sudo apt-mark hold kubelet kubeadm kubectl # 安裝 Docker sudo apt-get install apt-transport-https ca-certificates curl software-properties-common curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add - sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" sudo apt update sudo apt-get install docker-ce -y docker --version sudo systemctl start docker sudo chmod 666 /var/run/docker.sock sudo systemctl enable docker cat <<EOF | sudo tee /etc/docker/daemon.json { "exec-opts": ["native.cgroupdriver=systemd"] } EOF sudo systemctl restart docker # 關閉 swap sudo swapoff -a sudo sed -i '/\/swap/s/^/#/' /etc/fstab # 設定服務自動重啟 systemctl enable kubelet # Master Node 啟動 sudo kubeadm init --pod-network-cidr=192.168.0.0/16 kubectl taint nodes --all node-role.kubernetes.io/master- # kubeconfig mkdir -p $HOME/.kube sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config sudo chown $(id -u):$(id -g) $HOME/.kube/config # Deploying a pod network kubectl apply -f https://raw.githubusercontent.com/coreos/flannel/master/Documentation/kube-flannel.yml

Saturday, July 23, 2022 Read

[K8s] 以 Secrete 共享 tnsnames.ora

Introduction Managed ODP.NET 連線資料庫標榜不需要額外安裝 Oracle Client，資料庫連線資訊可以透過：程式內直接設定 connection string。解析環境變數 TNS_ADMIN 所指資料夾下的 tnsnames.ora。考慮到可維護性，一旦連線資訊有所變動(Ip/Domain/Port/Service Name/SID)，如果直接將連線字串寫在程式裡面，就需要重新佈署每個程式專案，因此如果讓 Managed ODP.NET 讀取共用的設定就能夠擁有只維護一份連線資訊的方便性。單主機的做法是部屬 tnsnames.ora 檔案，但因為 K8S 中 pod 都是隔離的環境，要共用連線資訊透過研究可能有這幾種方式： ExternalName Service 對應外部的資料庫位址，無法因應 ip, service name, sid 修改。 Service + Endpoints 轉送 ip 和 port。 Secret Volume 共用 tnsnames.ora。三種連線資訊共用策略是否能反映連線資訊修改： ExternalName Service Service + Endpoints Secret Volume Ip/Domain 可可可 Port 不能可可 Service Name/SID 不能不能可 Step Secret 用處：

Thursday, July 21, 2022 Read

[Container] 學習資源

DockerHub Docker文件 K8S

Monday, April 25, 2022 Read

[Docker] Docker Basic Command

執行容器 docker run [image] [overwrite defalut commain] 列出正在執行的容器， –all 可以列出曾經執行過的容器 docker ps [--all] docker run docker ps --all docker create docker start (what different from docker run?) docker system prune docker logs docker stop (send sigterm) 10s then docker kill docker kill docker build -t <dockerid>/<project>:latest . docker exec -it <containerId> /bin/bash (i, t stands for?) # execute new command build context! port mapping 是為了處理 into docker，docker 出來從來沒有被限制

Monday, April 25, 2022 Read