# Docker
(it is platform as  service (PAAS))

Docker is a platform (company) designed to make it easier to `create, deploy, and run applications by using containers.` Containers allow a developer to package up an application with all the parts it needs, such as libraries and other dependencies, and ship it all out as one package. This ensures that the application will run on any other Linux machine regardless of any customized settings that machine might have that could differ from the machine used for writing and testing the code.


# Docker Commands

# Docker Version and Information
docker version               # Show Docker version information
docker info                  # Display system-wide information

# Working with Docker Containers
docker run [OPTIONS] IMAGE [COMMAND] [ARG...]   # Create and start a container
docker ps                                      # List running containers
docker ps -a                                   # List all containers (including stopped)
docker stop CONTAINER_ID_or_NAME               # Stop a running container
docker start CONTAINER_ID_or_NAME              # Start a stopped container
docker restart CONTAINER_ID_or_NAME            # Restart a container
docker rm CONTAINER_ID_or_NAME                 # Remove one or more containers
docker logs CONTAINER_ID_or_NAME               # Fetch the logs of a container
docker exec -it CONTAINER_ID_or_NAME       # Execute a command inside a container

# Managing Images
docker images                                 # List all local images
docker pull IMAGE_NAME                        # Pull an image from a registry
docker push IMAGE_NAME                        # Push an image to a registry
docker rmi IMAGE_ID                           # Remove one or more images
docker build -t TAG .                         # Build an image from a Dockerfile
docker history IMAGE_ID                       # Show the history of an image
docker save -o filename.tar IMAGE_ID          # Save an image to a tar archive
docker load -i filename.tar                   # Load an image from a tar archive

# Docker Networking
docker network ls                             # List networks
docker network create NETWORK_NAME            # Create a network
docker network rm NETWORK_NAME                # Remove one or more networks
docker network connect NETWORK_NAME CONTAINER # Connect a container to a network
docker network disconnect NETWORK_NAME CONTAINER # Disconnect a container from a network

# Docker Volumes
docker volume ls                              # List volumes
docker volume create VOLUME_NAME              # Create a volume
docker volume rm VOLUME_NAME                  # Remove volumes

# Docker Compose (for multi-container environments)
docker-compose up                             # Create and start containers
docker-compose down                           # Stop and remove resources
docker-compose logs                           # View output from containers
docker-compose restart                        # Restart services
docker-compose build                          # Build or rebuild services

# Docker System Management
docker system df                              # Show docker disk usage
docker system prune                           # Remove unused data
docker system prune -a                        # Remove all unused images not just dangling ones

# Miscellaneous Docker Commands
docker inspect CONTAINER_or_IMAGE             # Return low-level information on Docker objects
docker stats                                  # Display a live stream of container(s) resource usage statistics
docker login [SERVER]                         # Log in to a Docker registry server
docker logout [SERVER]                        # Log out from a Docker registry server

# Environment and Configuration
docker config ls                              # List Docker configs
docker context ls                             # List Docker contexts


# Docker Engine
The Docker Engine is the core of Docker and operates at the system level. It's a client-server application with:

A server as a type of long-running program called a daemon process (the dockerd command).
A REST API which specifies interfaces that programs can use to talk to the daemon and instruct it what to do.
A command-line interface (CLI) client (docker).
The Docker daemon (dockerd) listens for Docker API requests and manages Docker objects such as images, containers, networks, and volumes. A Docker client is typically the primary way users interact with Docker.

# Docker Images
(it is package where your code is written with exeutable format)
A Docker image is a lightweight, standalone, executable package that includes everything needed to run a software application: code, runtime, libraries, environment variables, and configuration files. Images serve as a base foundation for running containers. Docker images are generally built from a series of layers, which are created with instructions in a Dockerfile. Each layer represents an instruction in the Dockerfile. When an image is updated, only the layers that changed are rebuilt.

# Docker Containers
A container is a runnable instance of an image. You can use Docker API or CLI to start, stop, and manage containers. When you run a container, Docker takes the image, adds a top writable layer, and initializes various settings (network ports, container names, ID, and resource limits). All changes made to the running container, such as writing new files, modifying existing files, and deleting files, are written to this thin writable layer.

# Docker Containers
A container is a runnable instance of an image. You can use Docker API or CLI to start, stop, and manage containers. When you run a container, Docker takes the image, adds a top writable layer, and initializes various settings (network ports, container names, ID, and resource limits). All changes made to the running container, such as writing new files, modifying existing files, and deleting files, are written to this thin writable layer.

# How Docker Works (Step-by-Step)
`Dockerfile:` Everything starts with a Dockerfile. This file contains a series of instructions on how to build a Docker image, such as base images to use, software to install, and commands to run.

`Building an Image:` You build an image from a Dockerfile using the docker build command. This process reads the Dockerfile, executes the instructions, and results in a Docker image.

`Running a Container:` Once an image is built, you can run it in a container. Using the docker run command, Docker creates a container from the image, allocates a filesystem and memory, sets up a network interface, and executes the application.

`Layered Architecture:` Each image and container layer is managed by Docker. Only the top layer of a container is writable, which helps minimize disk usage and image download times.

`Sharing Images:` After building your images, you can push them to Docker Hub or a private registry, making it easy to share images among different team members or deploy applications across multiple environments.

`Isolation and Security:` Containers are isolated from each other and the host system. Docker provides strong defaults, namespaces, and cgroups, which limit the amount of resources a container can use and what it can access.

## Architecture
`Docker Containers:` Share the host OS's kernel, lightweight as they do not include a full OS, only the application and its dependencies.


`Virtual Machines:` Each VM runs a full OS with a virtual copy of necessary hardware, managed by a hypervisor.

# Performance
`Docker Containers`: Near-native performance, faster start-up times due to less overhead.

`Virtual Machines:` Generally slower performance and start-up due to the overhead of running a full OS and emulating hardware.

# Resource Isolation and Security
`Docker Containers:` Less isolated, sharing the host's kernel, with potential security risks if not properly managed.

`Virtual Machines:` Strong isolation with a separate kernel, offering better security.

# Storage and Size
`Docker Containers:` Smaller image sizes, efficient storage with shared layers between containers.

`Virtual Machines:` Larger image sizes due to full OS included, resulting in more disk space usage.
# Management
`Docker Containers:` Easier to manage in high-density environments using tools like Kubernetes for orchestration.

`Virtual Machines: `Managed by hypervisor-specific tools; can be more complex and prone to VM sprawl.

# Use Cases
`Docker Containers:` Ideal for microservices, continuous development, and testing environments.

`Virtual Machines:` Better suited for applications requiring full isolation, legacy applications, and environments needing multiple OS types.

In [None]:
# Port Mapping

How Port Mapping Works
When you run a container, Docker uses a private and isolated networking environment for each container. This includes a separate IP address, which is typically not accessible outside the host by default. If you have an application running inside a container, such as a web server listening on port 80, that port is only available to other processes within the same container or linked containers, unless explicitly mapped to the host.

Example of Port Mapping
Suppose you have a web server running inside a Docker container that listens on port 80. If you want to access this web server from your browser by using the Docker host's IP address, you need to map the container's port 80 to a port on the Docker host. Here’s how you would do that using the docker run command:


docker run -p 8080:80 some/web-app
Here’s what the -p 8080:80 means:



8080: This is the host port. It's the port on your physical machine or Docker host. After running the command, the web server can be accessed on this port.

80: This is the container port. It's the port your application inside the container is set to use.
Accessing the Application


After running the above command, you can open a web browser and go to http://localhost:8080 or http://<docker-host-ip>:8080 (replace <docker-host-ip> with the actual IP address of your Docker host). This request will be routed to the web server inside the container on port 80.

Multiple Port Mappings
You can map multiple ports by specifying the -p option multiple times in the Docker run command. For instance, if a container has a web server on port 80 and a database server on port 3306, you could map both like this:



docker run -p 8080:80 -p 33060:3306 some/full-stack-app
Port Ranges
Docker also supports mapping a range of ports using a single -p argument:



docker run -p 7000-8000:7000-8000 some/app
Automatic Port Mapping


If you don’t want to specify a host port and are okay with Docker choosing one for you, you can use the -P flag (capital P), which tells Docker to bind each exposed port to a random high-numbered port on the host:


docker run -P some/web-app
You can then find out what port Docker assigned by running docker ps and looking at the "PORTS" section.

# `Docker Network`
Docker networks facilitate communication between Docker containers, and between Docker containers and the outside world. When you install Docker, it automatically creates several networks; you can list them with docker network ls. Here’s what Docker networks typically provide:


`Isolation and Segmentation:` Docker networks can be used to isolate containers from each other or to allow them to communicate. This is useful for structuring applications according to their network requirements.


`Driver Support:` Docker supports multiple network drivers. The default bridge network is suitable for standalone containers that need to communicate. 
Other types, like overlay networks, support multi-host networking for Docker Swarm, and macvlan networks can be used to assign a MAC address to a container, making it appear as a physical device on your network.


`User-Defined Networks:` Users can create their own custom networks using Docker’s network creation feature. This allows for more granular control over container networking.


Example of creating a user-defined bridge network:


docker network create --driver bridge my-custom-network


# Docker Volume
Docker volumes are used for persistent or shared data among containers. Volumes are managed by Docker and are safer and more flexible than persisting data in a container's writable layer or using bind mounts from the host system. Here are the key features:

`Data Persistence:` Unlike data in a container’s filesystem, data in a volume is not tied to the life of a container. It remains intact even after the container is deleted.

`Sharing and Reuse:` Volumes can be shared among multiple containers and can be reused by other containers.
Driver Support: Docker supports several volume drivers that allow storing volumes on remote hosts or cloud providers, enhancing data storage options.
Example of creating and using a volume:



docker volume create my-vol
docker run -d --name devtest -v my-vol:/app nginx

`Docker Compose`

Docker Compose is a tool for defining and running multi-container Docker applications. With Compose, you use a  file to configure your application’s services, networks, and volumes. 

## Here are its main benefits:

`Simplified Configuration: `Define your Docker environment in a docker-compose.yml file, and then execute a few simple commands to get everything up and running.

`Multi-Service Management: Easily` start, stop, and rebuild services as a group or individually.

`Development Environments: `Provides a convenient way to manage and isolate application environments along with their dependencies.




Example docker-compose.yml file for a simple web application:



version: '3'
services:
  web:
    image: nginx
    ports:
      - "8080:80"
    volumes:
      - web-data:/var/www/html
  database:
    image: postgres
    volumes:
      - db-data:/var/lib/postgresql/data

volumes:
  web-data:
  db-data:

  
With Docker Compose, you could start the entire stack with docker-compose up and shut it down with docker-compose down. This simplicity is particularly helpful for local development environments and testing.

# To solve problem between  the DEV and Ops team
Virtualization 
Containerization(Special type of Virtualization)

# System

![image.png](attachment:image.png)

# Virtualization:

os is used is use to build connection  or communication with hardware

OS is use for :

![image.png](attachment:image.png)



![image.png](attachment:image.png)

Virtualization has two tools 
- oracle virtual box 
- VM ware station 

both run the same application called as the `hypervisor`>>this is the application

![image.png](attachment:image.png)


In system we have hardware,os/kernel, hypervisor >>>> operating system called as `host OS`

from this we create the virtual machine which has hardware configuration os,and our application >>> in VM OS called as the `guest OS`


![image-2.png](attachment:image-2.png)


# Problem With Virtualization
In Geust Os we cant increase the hardware configuration once we select while creating vm then it will be static and it also not shared back to host os if we not using and
if our host configuration may not able to full fill the demand of gest host application in term of hardware (ram ,memory)

![image.png](attachment:image.png)


##### To solve the Virtualization problem Docker Container is used
![image.png](attachment:image.png)


it mean it is special type of virtual machine which does not have the full OS only application and dependencies

When we build the application with help of docker 
it do not have the hypervisor
and your docker container is `not` connected Host+os hardware and does not have their operating system
they used only the os/kernel which is shared 


it is dynamic process it mean whatever hardware confi is need will used and when we are not using application we can give it back to our hostos  

![image.png](attachment:image.png)

here app is container in above image

# Port Mapping

we have to map the port of the serive (flask port :5000 or manogdb:27017)
with  port of your host operating system


# How to Create the docker images:

images :(it is package where your code is written with exeutable format)
A Docker image is a lightweight, standalone, executable package that includes everything needed to run a software application: code, runtime, libraries, environment variables, and configuration files.

and this kind of image can be run inside the container (that is isloated VM)

![image.png](attachment:image.png)

![image-2.png](attachment:image-2.png)

dockerfile name should be : Dockerfile (follow same name if we change anything it will give the error)

From : taking  the python:3.8 from docker hub
copy : copy the entire code from local dir to the app
Workdir : setting app as the working dir
Run : for downloading requuirement in docker hub(for your image)

cmd : to run the app file



In [None]:
# To create docker image
docker bulid -t <app.py> .(dot from where we taking application i.e local work space)


# To map the your local port with docker container port
# docker run -d -p 5000:5000 myapp(this local host map with container host 5000)


# To host your image on dockerhub

docker login

# To which image want to host
docker tag <image> <usernameofdocker>/repositoryname   (myfirstapp>>image name)
eg.docker tag myfirstapp 007ankit/docketstudyproject


# push image 
docker push 007ankit/docketstudyproject




![image.png](attachment:image.png)

![image.png](attachment:image.png)