# Docker and Kubernetes
> - This notebook describes the process of using a production-style development workflow to build, test and deploy Docker applications with Kubernetes, a set of notes from https://www.udemy.com/docker-and-kubernetes-the-complete-guide/.
- Author: Brant Yukan, b.rant@ucla.edu
- Date: 9/13/19

## Goal: Use Docker to easily install and run software without troubleshooting setup  or dependencies.
- e.g. docker run -it redis
- An image is a file with all the dependencies and configurations required to run a program.  Containers are instances of an image.

### install on mac

In [5]:
!brew cask install docker


To re-install docker, run:
  [32mbrew cask reinstall docker[39m


In [8]:
!docker version

Client: Docker Engine - Community
 Version:           19.03.2
 API version:       1.40
 Go version:        go1.12.8
 Git commit:        6a30dfc
 Built:             Thu Aug 29 05:26:49 2019
 OS/Arch:           darwin/amd64
 Experimental:      false

Server: Docker Engine - Community
 Engine:
  Version:          19.03.2
  API version:      1.40 (minimum version 1.12)
  Go version:       go1.12.8
  Git commit:       6a30dfc
  Built:            Thu Aug 29 05:32:21 2019
  OS/Arch:          linux/amd64
  Experimental:     false
 containerd:
  Version:          v1.2.6
  GitCommit:        894b81a4b802e4eb2a91d1ce216b8817763c29fb
 runc:
  Version:          1.0.0-rc8
  GitCommit:        425e105d5a03fabd737a126ad93d62a9eeede87f
 docker-init:
  Version:          0.18.0
  GitCommit:        fec3683


### using docker

In [11]:
# start up new container using image with name hello-world
# first time, daemon pulls image from docker hub, after that it's saved in image cache
!docker run hello-world


Hello from Docker!
This message shows that your installation appears to be working correctly.

To generate this message, Docker took the following steps:
 1. The Docker client contacted the Docker daemon.
 2. The Docker daemon pulled the "hello-world" image from the Docker Hub.
    (amd64)
 3. The Docker daemon created a new container from that image which runs the
    executable that produces the output you are currently reading.
 4. The Docker daemon streamed that output to the Docker client, which sent it
    to your terminal.

To try something more ambitious, you can run an Ubuntu container with:
 $ docker run -it ubuntu bash

Share images, automate workflows, and more with a free Docker ID:
 https://hub.docker.com/

For more examples and ideas, visit:
 https://docs.docker.com/get-started/



- A container is a set of processes that have a groupig of resources specifically assigned to it.
- An image is a filesystem snapshot and startup command.
- When you create an image, your Linux kernel creates a control gorup, isolates a portion of the hard drive, RAM, CPU, and network to a container.  The filesystem snapshot gets placed in that subsection of the hard drive.  The startup command uses namespacing and runs on the isolated set of resources.

### docker CLI

In [17]:
# default command overrride
!docker run busybox echo hi there

hi there


In [19]:
# folders inside the container
!docker run busybox ls

bin
dev
etc
home
proc
root
sys
tmp
usr
var


In [21]:
# ls and echo don't exist inside the hello-world filesystem.
!docker run hello-world echo hi there

docker: Error response from daemon: OCI runtime create failed: container_linux.go:345: starting container process caused "exec: \"echo\": executable file not found in $PATH": unknown.
[31mERRO[0m[0001] error waiting for container: context canceled 


In [24]:
# linux systems used to store passwords in here, but now it's in shadow which is hidden.
!docker run busybox cat /etc/passwd
# !docker run busybox cat /etc/shadow

root:x:0:0:root:/root:/bin/sh
daemon:x:1:1:daemon:/usr/sbin:/bin/false
bin:x:2:2:bin:/bin:/bin/false
sys:x:3:3:sys:/dev:/bin/false
sync:x:4:100:sync:/bin:/bin/sync
mail:x:8:8:mail:/var/spool/mail:/bin/false
www-data:x:33:33:www-data:/var/www:/bin/false
operator:x:37:37:Operator:/var:/bin/false
nobody:x:65534:65534:nobody:/home:/bin/false


In [25]:
# lists all running containers running on machine
!docker ps

CONTAINER ID        IMAGE               COMMAND             CREATED             STATUS              PORTS               NAMES
