Index

A

add-apt-repository, Ubuntu Linux 17.04 (64-bit)
admin processes, Admin Processes
Alpine Linux
- testing Docker setup, Alpine Linux
- using to build custom base images, Custom Base Images
Amazon EC2, Amazon ECS and Fargate
- AmazonEC2ContainerServiceforEC2Role, IAM Role Setup
- EC2 launch type, Container Instances
Amazon ECS, Amazon ECS and Fargate-Stopping the Task
- Amazon Fargate, Amazon ECS and Fargate
- AWS CLI setup, AWS CLI Setup
- container instances, Container Instances
- core AWS setup, Core AWS Setup
- IAM role setup, IAM Role Setup
- tasks, Tasks-Stopping the Task
Apache Mesos, Distributed schedulers, Concurrency
API (Docker), Docker Engine API
apk
- add, Multistage builds
- update, Multistage builds
AppArmor, SElinux and AppArmor
apt-get, Centurion
- install, Ubuntu Linux 17.04 (64-bit)
- remove, Ubuntu Linux 17.04 (64-bit)
- update, Ubuntu Linux 17.04 (64-bit)
atomic hosts, Important Terminology, Atomic hosts
AuFS, Storage
authentication, The Docker Daemon
auxiliary addresses, Configuring networks
aws
- configure, Configuration
- ec2
  - describe-security-groups, Tasks
  - describe-subnets, Tasks
- ecs
  - create-cluster, Container Instances
  - create-service, Tasks
  - describe-services, Tasks, Stopping the Task
  - describe-tasks, Tasks, Stopping the Task
  - list-services, Tasks
  - list-task-definitions, Tasks
  - list-tasks, Tasks, Stopping the Task, Stopping the Task
  - register-task-definition, Tasks, Tasks
  - stop-task, Stopping the Task
  - update-service, Tasks
- iam
  - create-service-linked-role, Tasks
  - list-users, Configuration
AWS (Amazon Web Services)
- CLI (command-line interface) tools setup, AWS CLI Setup
  - configuration, Configuration
  - installation, Installation
- core setup for ECS and Fargate, Core AWS Setup
- IAM role setup, IAM Role Setup

B

backing filesystems, Storage
backing services, Backing Services
bash shell, Exploring the Shell, Exploring namespaces, UID 0
- starting in container with /etc bind-mounted to namespace, UID 0
Berkeley Packet Filter (bpf) rules, Secure Computing Mode
brew
- cask
  - install, macOS
- install, Installation, macOS
- update, Installation
bridge mode, Container Networking
bridge network, Network Inspection
Btrfs, Storage
building with Docker, Building

C

caching, optimizing for the layer cache in image builds, Optimizing for the Cache-Optimizing for the Cache
cAdvisor, cAdvisor-cAdvisor
cc-proxy, Clear Containers/Kata Containers
cc-runtime, Clear Containers/Kata Containers
- cc-env, Clear Containers/Kata Containers
- list, Clear Containers/Kata Containers
cc-shim, Clear Containers/Kata Containers
Centurion, Centurion-Centurion
centurionize, Centurion
cgroups, cgroups, gVisor
- /sys filesystem, The /sys filesystem
- constraints, Resource Quotas
chat robot hubot, Config
Chocolatey for Windows, Docker Client
- installing Docker CLI tools with, Chocolatey installation
Clear Containers runtime, Clear Containers/Kata Containers
- (see also cc-runtime)
client/server model (Docker), Client/Server Model
cloud platforms, What Docker Isn’t
- Docker support, Broad Support and Adoption
cloud providers
- plug-ins for Docker, Additional tools
- registries, Public Registries
- support for Docker ecosystem, Docker at Scale
cloud-init tool, Vagrant
codebase, Codebase
- including administrative/maintenance functions in, Admin Processes
- keeping configuration information out of, Config
compare-object (PowerShell), Secure Computing Mode
Compose configuration language, Configuring Docker Compose
concurency, Concurrency
configuration management, What Docker Isn’t
- avoiding with Docker, Toward an Immutable Infrastructure
configuring containerized applications, Configuration
- language-dependent configuration files, Dependencies
- networking, Advanced Configuration-Configuring networks
- storing configuration in environment variables, Config
container platform design (see platform design)
containerd, Client/Server Model, Process Output, The Structure of Docker
- functions of, The Structure of Docker
- managing more than one runtime, Clear Containers/Kata Containers
containers, Working with Docker Containers-Wrap-Up, Containers in Detail-Exploring namespaces
- and pods in Kubernetes, Kubernetes Containers and Pods
- auto-restarting, Auto-Restarting a Container
- cgroups, cgroups
  - /sys filesystem, The /sys filesystem
- cleaning up containers and images, Cleaning Up Containers and Images-Cleaning Up Containers and Images
- cloud providers' support for, Docker at Scale
- container user, Process Output
- creating, Creating a Container-ulimits
  - container name, Container name
  - DNS, Domain Name Service
  - hostname, Hostname
  - labels, Labels
  - MAC address, MAC address
  - resource quotas, Resource Quotas-ulimits
  - storage volumes, Storage Volumes
- creating container instances for AWS ECS cluster, Container Instances
- debugging (see debugging containers)
- defined, What Are Containers?
- Docker container networking, Container Networking
- getting inside a running container, Getting Inside a Running Container-docker volume
  - using docker exec, docker exec
  - using docker volume, docker volume
  - using nsenter, nsenter-nsenter
- health checks, Container Health Checks-Container Health Checks
- history of, History of Containers
- inspecting, Inspecting a Container-Inspecting a Container
- killing, Killing a Container
- lightweight nature of, Containers Are Lightweight
- limited isolation, Limited Isolation
- monitoring (see monitoring Docker)
- namespaces, Namespaces-Exploring namespaces
  - exploring, Exploring namespaces
- passing configuration in environment variables, Config
- pausing and unpausing, Pausing and Unpausing a Container
- performance impacts of storage backends, Storage
- privileged, Privileged Containers-Privileged Containers
- starting, Starting a Container
- stats on, Container Stats-Stats API endpoint
- taking to production, The Path to Production Containers-Wrap-Up
  - Docker and the DevOps pipeline, Docker and the DevOps Pipeline-Outside Dependencies
  - Docker's role in production environments, Docker’s Role in Production Environments-Production Wrap-Up
  - steps in process, Getting to Production
- versus virtual machines, Containers Are Not Virtual Machines
- Windows, Windows Containers-Windows Containers
content-addressable tags, Downloading Image Updates
control groups (see cgroups)
CPUs
- cAdvisor CPU graphs, cAdvisor
- CPU pinning of containers, CPU pinning
- CPU shares for containers, CPU shares
- simplifying CPU quotas for containers, Simplifying CPU qutoas
credentials managers, Logging in to a registry
curl, Stats API endpoint-Stats API endpoint, Let’s Deploy Something

D

daemon, Exploring the Docker Server-Wrap-Up, The Docker Daemon
databases in Docker, Getting the Most from Docker
Debian systems, Docker Client
debugging containers, Debugging Containers-Wrap-Up
- filesystem inspection, Filesystem Inspection
- image history, Image History
- inspecting a container, Inspecting a Container-Inspecting a Container
- network inspection, Network Inspection-Network Inspection
- process inspection, Process Inspection
- process output, Process Output-Process Output
dependencies, Dependencies
- external, Outside Dependencies
- treating as attached resources, Wrap-Up
deployment
- concerns addressed by Docker, The Challenges Docker Addresses
- creating in Kubernetes, Let’s Deploy Something
- deploying a realistic stack in Kubernetes, Deploying a Realistic Stack
- Deployment definition in Kubernetes, PersistentVolumeClaim Definition
- Docker deployment workflow, Process Simplification
- Docker minimization of deployment artifacts, Minimizing Deployment Artifacts
- mass deployment tools, Orchestration
- rolling deployment using Centurion, Centurion
- tools for, Docker at Scale
- with Docker, Deploying
- with zero downtime, Distributed schedulers
- workflow without Docker, Process Simplification
deployment frameworks, What Docker Isn’t
development environments, What Docker Isn’t
development/production parity, Development/Production Parity
Device Mapper, Storage
DevOps
- Docker addressing similar problems, The Docker Workflow
- Docker and DevOps pipeline, Docker and the DevOps Pipeline-Outside Dependencies
diff, Secure Computing Mode
disposability, Disposability
dmesg, Memory
dnf
- clean, Layers Are Additive
- config-manager, Fedora Linux 26 (64-bit)
- install, Fedora Linux 26 (64-bit), Layers Are Additive
DNS (Domain Name Service), Domain Name Service
Docker
- architecture, Architecture-Getting the Most from Docker
  - API, Docker Engine API
  - client/server model, Client/Server Model
  - command-line tool, Docker Command-Line Tool
  - container networking, Container Networking
  - network ports and Unix sockets, Network Ports and Unix Sockets
  - robust tooling, Robust Tooling
- benefits of, Benefits of the Docker Workflow, The Payoff
- broad support and adoption of, Broad Support and Adoption
- challenges addressed by, The Challenges Docker Addresses
- getting the most from, Getting the Most from Docker-Externalizing State
  - containers vs. virtual machines, Containers Are Not Virtual Machines
  - externalizing state, Externalizing State
  - lightweight containers, Containers Are Lightweight
  - limited container isolation, Limited Isolation
  - moving toward immutable infrastructure, Toward an Immutable Infrastructure
  - stateless applications, Stateless Applications
- printing the version, Printing the Docker Version
- process simplification with, Process Simplification
- structure of, The Structure of Docker-The Structure of Docker
- terminology, Important Terminology
- tools used with, What Docker Isn’t
- workflow, The Docker Workflow-Additional tools, The Docker Workflow
  - building applications, Building
  - deployment, Deploying
  - Docker ecosystem, The Docker Ecosystem-Additional tools
  - packaging, Packaging
  - revision control, Revision Control
  - testing, Testing
docker, Network Ports and Unix Sockets, Docker Command-Line Tool
- build, Building an Image, Container Health Checks
- container
  - ls, Keeping Images Small
  - update, Resource Quotas, The /sys filesystem
- create, Creating a Container
  - --cgroup-parent, The /sys filesystem
- diff, Filesystem Inspection
- dockerd, Storage
- events, Docker Events, The /sys filesystem
- exec, docker exec, Process Inspection, Exploring namespaces
- export, Keeping Images Small
- history, Layers Are Additive, Image History, Configuring Docker Compose
- image
  - inspect, Keeping Images Small
  - ls, Pushing images into a repository
- images, Cleaning Up Containers and Images
- import, Exploration
- info, Vagrant, Resource Quotas, Server Information, nsenter, Storage, Clear Containers/Kata Containers
- inspect, Anatomy of a Dockerfile, Labels, Inspecting a Container, Container Health Checks, Inspecting a Container, Config
- kill, Killing a Container, docker exec, Controlling Processes
- login, Logging in to a registry, Logging in to a registry, Testing the private registry
- logout, Logging in to a registry
- logs, docker logs-docker logs, Inspecting a Container, Logs
- network
  - create, Docker Swarm Mode
  - inspect, Network Inspection, Configuring networks
  - ls, Network Inspection, Configuring networks
- node
  - inspect, Docker Swarm Mode
  - ls, Docker Swarm Mode, Docker Swarm Mode
  - update, Docker Swarm Mode, Docker Swarm Mode, Docker Swarm Mode
- pause, Stopping a Container, Pausing and Unpausing a Container
- ps, Environment Variables, Labels, Starting a Container, Auto-Restarting a Container, Inspecting a Container, nsenter, Container Health Checks, Process Output, Inspecting a Container, Running Kubernetes, Clear Containers/Kata Containers
- pull, Pushing images into a repository, Downloading Image Updates
- push, Pushing images into a repository, Quick Overview
- rm, Running a Private Registry, Container name, Cleaning Up Containers and Images, Exploring namespaces
- rmi, Cleaning Up Containers and Images
- run, Testing the Setup, Environment Variables, Creating a Container, Returning a Result, docker volume, Container Health Checks, cAdvisor, Prometheus Monitoring, Job Control
  - --cap-add, Privileged Containers
  - --cap-drop, Privileged Containers
  - --cgroup-parent, The /sys filesystem
  - --init, Controlling Processes
  - --net=host, Container Networking, Host networking
  - --privileged=true, Privileged Containers
  - --runtime, Clear Containers/Kata Containers
  - --uts=host, Namespaces
  - -e, Quick Overview, Config
  - -p, Port Binding
  - -v, UID 0
- save, Exploration
- secret, Config
- service
  - create, Docker Swarm Mode
  - inspect, Docker Swarm Mode
  - ls, Docker Swarm Mode
  - ps, Docker Swarm Mode, Docker Swarm Mode, Docker Swarm Mode, Docker Swarm Mode
  - rm, Docker Swarm Mode
  - rollback, Docker Swarm Mode
  - scale, Docker Swarm Mode, Concurrency
  - update, Docker Swarm Mode, Docker Swarm Mode
- start, Creating a Container, Starting a Container, Docker Events, Job Control
- stats, Command-line stats, cgroups, The Structure of Docker
- stop, Environment Variables, Stopping a Container, Docker Events, Job Control
- swarm
  - init, Docker Swarm Mode
  - join, Docker Swarm Mode, Docker Swarm Mode
- system
  - prune, Cleaning Up Containers and Images
- tag, Pushing images into a repository, Layers Are Additive, Quick Overview
- top, Process Output
- unpause, Stopping a Container, Pausing and Unpausing a Container
- update, Simplifying CPU qutoas
- version, Printing the Docker Version
- volume
  - create, docker volume
  - ls, docker volume
  - rm, docker volume
Docker client, Important Terminology
- installing, Docker Client-Docker Server
  - on Linux, Linux
  - on macOS and Mac OS X, macOS, Mac OS X
  - on Windows 10 Professional, Microsoft Windows 10 Professional
- version information, Printing the Docker Version
Docker Community Edition, Docker Client, Ubuntu Linux 17.04 (64-bit), Docker Swarm Mode
- Docker server setup, Docker Server
Docker Compose, Robust Tooling, Exploring Docker Compose-Wrap-Up, Outside Dependencies
- configuring, Configuring Docker Compose-Configuring Docker Compose
- exploring further features, Exercising Docker Compose-Wrap-Up
- exploring RocketChat service (example), Exploring RocketChat-Exploring RocketChat
- launching services, Launching Services-Launching Services
Docker containers, Important Terminology
- (see also containers)
Docker daemon (see Docker server; dockerd)
Docker Distribution, Private Registries, Running a Private Registry
Docker Enterprise Edition, Ubuntu Linux 17.04 (64-bit)
Docker Hub, Anatomy of a Dockerfile
- creating an account, Creating a Docker Hub account
- logging into a registry, Logging in to a registry
Docker images, Important Terminology
- (see also images)
Docker Machine, Robust Tooling, Docker Machine
- downloading and installing the executable, Docker Machine
Docker server, Important Terminology
- exploring, Exploring the Docker Server-Wrap-Up
- information about, Server Information
- installing, Docker Server-Testing the Setup
  - non-Linux VM-based server, Non-Linux VM-Based Server-Testing the Setup
  - on systemd-based Linux, systemd-Based Linux
- version information, Printing the Docker Version
Docker Swarm (deprecated), Robust Tooling, Service Discovery, Docker Swarm Mode
Docker Swarm mode, Robust Tooling, Service Discovery, Docker Swarm Mode-Docker Swarm Mode, Concurrency
docker-compose, Network Inspection
- build, Launching Services
- config, Launching Services
- down, Exercising Docker Compose
- exec, Exercising Docker Compose
- logs, Launching Services, Exercising Docker Compose
- pause, Exercising Docker Compose
- restart, Exploring RocketChat
- start, Exercising Docker Compose
- stop, Exercising Docker Compose
- top, Exercising Docker Compose
- unpause, Exercising Docker Compose
- up, Launching Services
docker-compose.yaml file (example), Configuring Docker Compose
docker-containerd-shim, Process Output, Exploring namespaces, Clear Containers/Kata Containers
- functions of, The Structure of Docker
docker-enter, nsenter
docker-init, Client/Server Model
docker-machine, Docker Client
- config, Docker Machine
- create, Docker Machine
- env, Docker Machine
- ip, Docker Machine, Running Your Image
- ls, Docker Machine
- regenerate-certs, Docker Machine
- rm, Docker Machine
- ssh, Docker Machine
- start, Docker Machine, Docker Machine
- stop, Docker Machine
docker-proxy, Client/Server Model, Process Output, Network Inspection, Networking
docker-runc
- events, The Structure of Docker
- list, The Structure of Docker
dockerd, Important Terminology, Network Ports and Unix Sockets, More Advanced Logging, Prometheus Monitoring, Exploring namespaces, The Docker Daemon, The Structure of Docker
- --add-runtime, Clear Containers/Kata Containers
- functions of, The Structure of Docker
Dockerfile, Anatomy of a Dockerfile-Anatomy of a Dockerfile, Configuration
- ADD, Anatomy of a Dockerfile, Anatomy of a Dockerfile
- changing order of commands, Optimizing for the Cache
- CMD, Anatomy of a Dockerfile, Non-Plug-In Community Options, Controlling Processes
- COPY, Container Health Checks
- defining dependencies, Dependencies
- ENTRYPOINT, Quick Overview
- ENV, Anatomy of a Dockerfile
- FROM, Anatomy of a Dockerfile, Container Health Checks
- health check definitions in, Container Health Checks
- HEALTHCHECK, Container Health Checks
- LABEL, Anatomy of a Dockerfile, Anatomy of a Dockerfile
- MAINTAINER, Anatomy of a Dockerfile
- RUN, Anatomy of a Dockerfile, Anatomy of a Dockerfile
- USER, Anatomy of a Dockerfile, Anatomy of a Dockerfile
- WORKDIR, Anatomy of a Dockerfile, Anatomy of a Dockerfile
dynamic volume provisioning, PersistentVolumeClaim Definition

E

EC2, Amazon ECS and Fargate
- AmazonEC2ContainerServiceforEC2Role, IAM Role Setup
- EC2 launch type, Container Instances
ecosystem (Docker), The Docker Ecosystem-Additional tools
- additional tools, Additional tools
- atomic hosts, Atomic hosts
- changes and deprecated features, Installing Docker
- orchestration, Orchestration
ECS (Elastic Container Service), Amazon ECS and Fargate
- (see also Amazon ECS)
Enterprise Edition (see Docker Enterprise Edition)
enterprise virtualization platforms, What Docker Isn’t
environment variables, Configuration
- configuration passed in, Externalizing State
- defining in Docker Compose, Configuring Docker Compose
- DOCKER_CERT_PATH, Docker Machine, Vagrant
- DOCKER_HOST, Docker Machine, Vagrant, Running Your Image, Stats API endpoint
- DOCKER_MACHINE_NAME, Docker Machine
- DOCKER_TLS_VERIFY, Docker Machine, Vagrant
- for Centurion, Centurion
- KUBE_VERSION, Linux
- passing to an application, Environment Variables
- passing to docker run, Quick Overview
- storing configuration in, Config
expose (port) setting (Docker Compose), Configuring Docker Compose

F

Fargate, Amazon ECS and Fargate
- (see also Amazon ECS)
Fedora Linux
- installing Docker client on, Fedora Linux 26 (64-bit)
- testing Docker setup, Testing the Setup
filesystem inspection, Filesystem Inspection
filesystem layers, Filesystem layers

G

git clone, Vagrant, Running a Private Registry
Go, Docker SDK for, Docker Engine API
gVisor, gVisor-gVisor

H

health checks for containers, Container Health Checks-Container Health Checks
Heroku, Process Simplification, The Twelve-Factor App
HipChat adapter, Config
Homebrew, Docker Client, Centurion
- installing AWS CLI, Installation
- installing Docker CLI tools with, Homebrew installation
- installing Minikube, macOS
horizontal scaling, Concurrency
host network mode, Network Inspection, Host networking
hostname, Hostname
hosts
- atomic hosts, Important Terminology, Atomic hosts
- configuring for Centurion, Centurion
htop, CPU shares
HUP signals, Killing a Container
Hyper-V, Windows
hyperkube, kubectl API
hypervisors, What Are Containers?
- for Docker Machine, Docker Machine

I

I/O, block I/O for containers, Block I/O
IAM (Identity and Access Management) roles, AWS, IAM Role Setup
ifconfig, Networking
ignition tool, Vagrant
image registries (see registries)
image tags, Image tags
- editing, Pushing images into a repository
- in testing, Quick Overview
- setting in Docker Compose, Configuring Docker Compose
images, Working with Docker Images-Wrap-Up
- base images larger than needed, Dependencies
- building, Building an Image-Troubleshooting Broken Builds
- building techniques, advanced, Advanced Building Techniques-Optimizing for the Cache
  - additive layers, Layers Are Additive-Layers Are Additive
  - keeping images small, Keeping Images Small-Multistage builds
  - optimizing for the cache, Optimizing for the Cache-Optimizing for the Cache
- cleaning up, Cleaning Up Containers and Images-Cleaning Up Containers and Images
- custom base images, Custom Base Images
- Dockerfiles, Anatomy of a Dockerfile-Anatomy of a Dockerfile
- downloading updates, Downloading Image Updates-Downloading Image Updates
- history of, Image History
- optimizing storage and retrieval of, Optimizing Storage and Retrieval
- storing, Storing Images-Testing the private registry
- troubleshooting broken builds, Troubleshooting Broken Builds-Running Your Image
immutable infrastructure, Toward an Immutable Infrastructure
init process, Controlling Processes
init system, Exploring the Shell
installation, Installing Docker-Wrap-Up
- Docker client, Docker Client-Docker Server
  - on Linux, Linux
  - on macOS and Mac OS X, macOS, Mac OS X
  - on Windows 10 Professional, Microsoft Windows 10 Professional
- Docker server, Docker Server-Testing the Setup
- testing the setup, Testing the Setup-Alpine Linux
ip addr show, Networking, gVisor
IPC namespaces, Namespaces

J

job control, Job Control
journald, More Advanced Logging
json-file logging plug-in, docker logs

K

Kata Containers runtime, Clear Containers/Kata Containers
kernel capabilities given to container, Privileged Containers
kill command, Controlling Processes
kubectl, Kubernetes Dashboard
- create, Deploying the Application
- delete, Let’s Deploy Something
- expose
  - deployment, Let’s Deploy Something
- get, Let’s Deploy Something, Let’s Deploy Something, Deploying the Application
- installing on Linux, Linux
- installing on Windows, Windows
- logs, Scaling Up
- on macOS, macOS
- proxy, kubectl API
- run, Let’s Deploy Something
- scale, Scaling Up
Kubernetes, Distributed schedulers, Kubernetes-kubectl API, Concurrency
- containers and pods, Kubernetes Containers and Pods-Kubernetes Containers and Pods
- dashboard, Kubernetes Dashboard
- deploying a pod, Let’s Deploy Something
- deploying a realistic stack, Deploying a Realistic Stack
- deploying the application, Deploying the Application
- Deployment definition, PersistentVolumeClaim Definition
- kubectl API, kubectl API
- PersistentVolumeClaim definition, Service Definition
- running, Running Kubernetes-Minikube commands
- scaling up, Scaling Up
- service definition, Deploying a Realistic Stack

L

labels, Labels
latest tag, Image tags, Downloading Image Updates
Linux
- building images on various distributions, Custom Base Images
- containers, History of Containers
- Docker server on systemd-based Linux, systemd-Based Linux
- Docker support, Broad Support and Adoption
- installing Docker client on, Linux
- installing Minikube, Linux
- Linux containers, building and launching, Installing Docker
- out-of-memory (OOM) killer, Memory
logging, Logging-Non-Plug-In Community Options, Inspecting a Container, Logging
- configurable logging backends, More Advanced Logging
- journald, More Advanced Logging
- logs for Kubernetes application, Scaling Up
- logs for services in Docker Compose, Launching Services
- non-plug-in community options, Non-Plug-In Community Options
- sending container logs to syslog, More Advanced Logging-More Advanced Logging
- sending logs to logging system, Logs
- stdout/stderr, Logging
- streaming logs to STDOUT/STDERR, Logs
Logspout, Non-Plug-In Community Options
lsof, Process Inspection

M

MAC (media access control) address, MAC address, Configuring networks
- attempting to change for a container, Privileged Containers
macOS
- installing AWS CLI, Installation
- installing Docker client on, macOS, Mac OS X
- installing Docker on, Docker Client
- installing Minikube, macOS
macvlan driver, Configuring networks
Mandatory Access Control, SElinux and AppArmor
memory, controlling acces for containers, Memory
Mesos (see Apache Mesos)
message-driven systems, Message-Driven
Minikube, Kubernetes-Linux
- about, What Is Minikube?
- commands, Minikube commands
- installing, Installing Minikube-Linux
minikube
- dashboard, Kubernetes Dashboard, Scaling Up
- ip, Minikube commands
- service, Let’s Deploy Something, Deploying the Application
- ssh, Running Kubernetes
- start, Running Kubernetes
- status, Minikube commands
- stop, Minikube commands
monitoring, Monitoring
- (see also monitoring Docker)
monitoring Docker, Monitoring Docker-cAdvisor
- container stats, Container Stats-Stats API endpoint
- Prometheus monitoring, Prometheus Monitoring-Prometheus Monitoring
- using cAdvisor, cAdvisor-cAdvisor
- using docker events, Docker Events
mount command, Hostname, Host networking, gVisor
mount namespaces, Namespaces

N

namespaces, Containers in Detail, Namespaces-Exploring namespaces, gVisor
- exploring, Exploring namespaces
- Interprocess Communication (ipc), Namespaces
- Mount (mnt), Namespaces
- Network (net), Namespaces
- Process ID (pid), Namespaces
- Unix Time Sharing (uts), Namespaces
- User ID (user), Namespaces
netstat, Network Inspection
- -an, Host networking
network namespaces, Namespaces
network ports, Docker on, Network Ports and Unix Sockets
networking, Networking
- configuration, advanced, Networking-Configuring networks
  - configuring networks, Configuring networks
  - host networking, Host networking
- creating default network for services in Docker Swarm, Docker Swarm Mode
- Docker containers, Container Networking
- network inspection for containers, Network Inspection-Network Inspection
- networks for a Docker Compose container, Configuring Docker Compose
- networks section in docker-compose.yaml, Configuring Docker Compose
nsenter, Exploring the Docker Server, nsenter-nsenter, Namespaces, Exploring namespaces

O

OCI (see Open Container Initiative)
Open Container Initiative (OCI), Broad Support and Adoption, The Structure of Docker
operating system virtualization, What Are Containers?
operating systems
- Docker installation directions for, Chocolatey installation
- support and adoption of Docker, Broad Support and Adoption
- support by Docker client, Docker Client
Oracle's Railcar, Swapping Runtimes
orchestration, Orchestration
orchestration toolset, Robust Tooling, Orchestration
OS package manager, Docker Client
out-of-memory (OOM) killer (Linux), Memory
overlay driver, Configuring networks
Overlay filesystem, Storage

S

scale, running Docker at, Docker at Scale-Wrap-Up
- Amazon ECS and Fargate, Amazon ECS and Fargate-Stopping the Task
- Centurion, Centurion-Centurion
- Kubernetes, Kubernetes-kubectl API
scaling, horizontal, Concurrency
schedulers
- automatic, Orchestration
- tools for, Docker at Scale
scheduling, Scheduling
- distributed schedulers, Distributed schedulers
- orchestration, Orchestration
SDKs, Docker (software development kits), Docker Engine API
seccomp (see security, Secure Computing Mode)
seccomp profiles, Secure Computing Mode
seccomp-bpf, Secure Computing Mode
secrets, managing, Config
security, Security-The Docker Daemon
- and limited container isolation, Limited Isolation
- Docker daemon (dockerd), The Docker Daemon
- improvements for containers, Namespaces
- privileged containers, Privileged Containers-Privileged Containers
- Secure Computing Mode, Secure Computing Mode-Secure Computing Mode
- SELinux and AppArmor, SElinux and AppArmor
- UID 0, UID 0-Privileged Containers
SELinux, SElinux and AppArmor
- and volume mounts, Storage Volumes
service discovery, Service Discovery-Service Discovery
services
- configuring in Docker Compose, Configuring Docker Compose-Configuring Docker Compose
- designed to be ephemeral, Disposability
- launching in Docker Compose, Launching Services-Launching Services
- treating backing services as attached resources, Backing Services
shell, exploring, Exploring the Shell
SIGKILL signals, Stopping a Container
signals, Unix (see Unix signals)
SIGSTOP signals, Pausing and Unpausing a Container
SIGTERM signals, Stopping a Container, Disposability
SIGUSR1 signals, Controlling Processes
SSL certificates, The Docker Daemon
Standard Error (see logging)
Standard Out (see logging)
startup and shutdown, fast and graceful, Disposability
state, externalizing, Externalizing State
stateless applications, Stateless Applications, Processes
stdout/stderr, Non-Plug-In Community Options
storage, Storage-Storage
- Docker optimation of, Optimizing Storage and Retrieval
storage backends, Working with Docker Images, Storage
storage volumes, Storage Volumes
- (see also volumes)
strace, Process Inspection, Secure Computing Mode
stress command, CPU shares, CPU pinning, Memory
structure of Docker, The Structure of Docker-The Structure of Docker
supervisord, Anatomy of a Dockerfile
swap (memory), Memory
swapon, Privileged Containers
Swarm (see Docker Swarm; Docker Swarm mode)
/sys filesystem, The /sys filesystem, UID 0
syslog, logging to, More Advanced Logging-More Advanced Logging
systemctl, The /sys filesystem
- enable, systemd-Based Linux
- start, systemd-Based Linux
systemd init system, More Advanced Logging, The /sys filesystem, Logs

T

tar command, Keeping Images Small
tasks, Tasks-Stopping the Task
- creating a task definition, Tasks-Tasks
- stopping, Stopping the Task
- testing, Testing the Task
tcpdump, Privileged Containers
testing, Testing
- workflow for testing Dockerized application, Quick Overview
time command, Optimizing for the Cache
tini project, Controlling Processes
TLS (Transport Layer Security), The Docker Daemon
tooling, Docker's robust tooling, Robust Tooling
top command, CPU shares
Twelve-Factor App, The Twelve-Factor App-Twelve-Factor Wrap-Up

U

Ubuntu Linux
- installing Docker client on, Ubuntu Linux 17.04 (64-bit)
- testing Docker setup, Testing the Setup
UID 0, UID 0-Privileged Containers
ulimit, ulimits
Unix signals, Controlling Processes
- SIGKILL, Stopping a Container
- SIGSTOP, Pausing and Unpausing a Container
- SIGTERM, Stopping a Container, Disposability
- SIGUSR1, Controlling Processes
Unix sockets, Network Ports and Unix Sockets
upstart, Logs
user namespaces, Namespaces
UTS (Unix Time Sharing) namespaces, Namespaces

V

Vagrant, What Docker Isn’t, Docker Client, Vagrant
- installing, Vagrant
vagrant
- halt, Vagrant
- ssh, Vagrant
- up, Vagrant
VFS (Virtual File System), Storage
virtual machines vs. containers, Containers Are Not Virtual Machines
VirtualBox, Docker Machine
virtualization platforms, What Docker Isn’t
volumes, Storage Volumes
- docker volume commands, docker volume
- dynamic volume provisioning in Kubernetes, PersistentVolumeClaim Definition
- volumes option in Docker Compose, Configuring Docker Compose

W

wc, Returning a Result
whoami, UID 0
Windows
- bringing up Docker Compose services, Launching Services
- containers, Windows Containers-Windows Containers
- Docker support, Broad Support and Adoption
- docker-compose down command, Exercising Docker Compose
- docker-compose.yaml file, Launching Services
- installing AWS CLI, Installation
- installing Docker client on Windows 10 Professional, Microsoft Windows 10 Professional
- installing Docker on, Docker Client
- installing Minikube, Windows
workload management tools, What Docker Isn’t

Z

ZFS, Storage

Table of Contents for Docker: Up & Running, 2nd Edition

Index

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

Z

Table of Contents for
Docker: Up & Running, 2nd Edition