A Complete Guide to Docker | Cheatsheet

What is docker ? πŸ”—

Docker is a platform for developing, deploying, and running applications in standardized units called containers. These containers package the application’s code, libraries, and dependencies, ensuring it runs consistently across different environments. Think of it like shipping containers for software, making it easier and faster to move your application around without worrying about compatibility issues.

Why Docker ? πŸ”—

  • Portability: Docker apps run consistently across different environments, from development machines to production servers, avoiding the “it works on my machine” problem.
  • Efficiency: Containers are lightweight and share the underlying operating system, making them resource-efficient compared to virtual machines.
  • Isolation: Applications in containers are isolated from each other, preventing conflicts and improving security.
  • Scalability: Scaling Dockerized applications is easy as you can simply spin up more containers as needed.
  • Speed: Docker allows for faster development, testing, and deployment cycles due to its standardized approach.

How to install Docker ? πŸ”—

Linux πŸ”—

To install docker on any Linux based distribution, use this code to run the script thst installs docker on your operating system.

curl -sSL https://get.docker.com/ | sh

If you do not like running scripts, check the installation instructions for your Linux distro here .

macOS πŸ”—

To install docker on your macbook or mac mini or any mac os powered machine, use homebrew by this command brew install --cask docker or by installing the Docker Desktop .

Windows OS πŸ”—

To install docker on Windows 10 or Windows 11, check the instructions on the official docker website here .

I recommend installing docker on WSL2. Use these instructions to install Docker Desktop in the Windows Subsystem for Linux version 2.

Check version πŸ”—

Use docker version to show all detailed about the current installed version of Docker on your operating system.

$ docker version
 Cloud integration: v1.0.35+desktop.10
 Version:           25.0.3
 API version:       1.44
 Go version:        go1.21.6
 Git commit:        4debf41
 Built:             Tue Feb  6 21:13:26 2024
 OS/Arch:           darwin/amd64
 Context:           desktop-linux

Server: Docker Desktop 4.27.2 (137060)
  Version:          25.0.3
  API version:      1.44 (minimum version 1.24)
  Go version:       go1.21.6
  Git commit:       f417435
  Built:            Tue Feb  6 21:14:25 2024
  OS/Arch:          linux/amd64
  Experimental:     false
  Version:          1.6.28
  GitCommit:        ae07eda36dd25f8a1b98dfbf587313b99c0190bb
  Version:          1.1.12
  GitCommit:        v1.1.12-0-g51d5e94
  Version:          0.19.0
  GitCommit:        de40ad0

But if you want just the version of the docker, use docker version --format '{{.Server.Version}}'.

$ docker version --format '{{.Server.Version}}'

Container commands πŸ”—

  • docker create creates a container but does not start it.
  • docker rename rename the container.
  • docker run creates and starts a container in one operation.
  • docker rm deletes a container.
  • docker update updates a container’s resource limits.

So, you can..

  • docker start starts a container so it is running.
  • docker stop stops a running container.
  • docker restart stops and starts a container.
  • docker pause pauses a running container, “freezing” it in place.
  • docker unpause will unpause a running container.
  • docker wait blocks until running container stops.
  • docker kill sends a SIGKILL to a running container.
  • docker attach will connect to a running container.

To get info,..

  • docker ps shows running containers.
  • docker logs gets logs from container. (You can use a custom log driver, but logs is only available for json-file and journald in 1.10).
  • docker inspect looks at all the info on a container (including IP address).
  • docker events gets events from container.
  • docker port shows public facing port of container.
  • docker top shows running processes in container.
  • docker stats shows containers’ resource usage statistics.
  • docker diff shows changed files in the container’s FS.
  • docker ps -a shows running and stopped containers.
  • docker stats --all shows a list of all containers, default shows just running.

To import/export between a docker container and your operating system,..

  • docker cp copies files or folders/directories between a container and the local filesystem.
  • docker export turns container filesystem into tarball archive stream to STDOUT.

To execute a command inside the docker container,..

  • docker exec to execute a command in container.

Docker images πŸ”—

  • docker images shows all images.
  • docker import creates an image from a tarball.
  • docker build creates image from Dockerfile.
  • docker commit creates image from a container, pausing it temporarily if it is running.
  • docker rmi removes an image.
  • docker load loads an image from a tar archive as STDIN, including images and tags (as of 0.7).
  • docker save saves an image to a tar archive stream to STDOUT with all parent layers, tags & versions (as of 0.7).

To get info about images,..

  • docker history shows history of image.
  • docker tag tags an image to a name (local or registry).

Cleanup old and obsolete docker images πŸ”—

You can use docker image prune to remove all dangling images which are not in use.

Total reclaimed space: 2.016GB

That freed up 2GB of storage on my operating system.

We’ll talk about more commands to cleanup and delete obsolete things below.

Load/Save docker image πŸ”—

Load an image from file:

docker load < my_image.tar.gz

Save an existing image:

docker save my_image:my_tag | gzip > my_image.tar.gz

Import/Export container πŸ”—

Import a container as an image from file:

cat my_container.tar.gz | docker import - my_image:my_tag

Export an existing container:

docker export my_container | gzip > my_container.tar.gz

Difference between loading a saved image and importing an exported container as an image πŸ”—

Loading an image using the load command creates a new image including its history. Importing a container as an image using the import command creates a new image excluding the history which results in a smaller image size compared to loading an image.

Networks in Docker πŸ”—

  • docker network create NAME Create a new network (default type: bridge).
  • docker network rm NAME Remove one or more networks by name or identifier. No containers can be connected to the network when deleting it.
  • docker network ls List networks.
  • docker network inspect NAME Display detailed information on one or more networks.
  • docker network connect NETWORK CONTAINER Connect a container to a network.
  • docker network disconnect NETWORK CONTAINER Disconnect a container from a network.

Docker Registry & Repository πŸ”—

  • docker login to login to a registry.
  • docker logout to logout from a registry.
  • docker search searches registry for image.
  • docker pull pulls an image from registry to local machine.
  • docker push pushes an image to the registry from local machine.

Dockerfile πŸ”—

The configuration file which sets up a Docker container when you run docker build on it. See docker docs on the configuration file here .

  • use .dockerignore file.
  • FROM Sets the Base Image for subsequent instructions.
  • LABEL Set the Author field of the generated images.
  • RUN execute any commands in a new layer on top of the current image and commit the results.
  • CMD provide defaults for an executing container.
  • EXPOSE informs Docker that the container listens on the specified network ports at runtime. NOTE: does not actually make ports accessible.
  • ENV sets environment variable.
  • ADD copies new files, directories or remote file to container. Invalidates caches. Avoid ADD and use COPY instead.
  • COPY copies new files or directories to container. By default this copies as root regardless of the USER/WORKDIR settings. Use --chown=<user>:<group> to give ownership to another user/group. (Same for ADD.)
  • ENTRYPOINT configures a container that will run as an executable.
  • VOLUME creates a mount point for externally mounted volumes or other containers.
  • USER sets the user name for following RUN / CMD / ENTRYPOINT commands.
  • WORKDIR sets the working directory.
  • ARG defines a build-time variable.
  • ONBUILD adds a trigger instruction when the image is used as the base for another build.
  • STOPSIGNAL sets the system call signal that will be sent to the container to exit.
  • LABEL apply key/value metadata to your images, containers, or daemons.
  • SHELL override default shell is used by docker to run commands.
  • HEALTHCHECK tells docker how to test a container to check that it is still working.

Docker Volumes πŸ”—

  • docker volume create creates a new volume/drive.
  • docker volume rm removes a volume/drive.
  • docker volume ls lists all volumes/drives.
  • docker volume inspect get all info about volumes/drives.

You can map MacOS host directories as docker volumes like this:

docker run -v /Users/mbp/projects/test_app/src:/src

Docker-Compose πŸ”—

Compose is a tool for defining and running multi-container Docker applications. With Compose, you use a YAML file to configure your application’s services. Then, with a single command, you create and start all the services from your configuration.

By using the following command you can start up your application:

docker-compose -f <docker-compose-file> up

You can also run docker-compose in detached mode using -d flag, then you can stop it whenever needed by the following command:

docker-compose stop

To optimize your local storage space, you can delete Docker things which are not in use.

a summary of the space currently used by different docker objects πŸ”—

I use docker system df to show all Docker objects consuming local storage space.

delete ALL unused data πŸ”—

You can use this command docker system prune to delete containers stopped, volumes without containers and images with no containers.

$ docker system prune
WARNING! This will remove:
  - all stopped containers
  - all networks not used by at least one container
  - all dangling images
  - unused build cache

Are you sure you want to continue? [y/N] y
Deleted Containers:

Deleted Images:
deleted: sha256:733f85f0cfd5ed8968895d3ce30f24b442e519d5e2c5aa0639516f31cac4655a
deleted: sha256:7eb764bcde3848cf716defa3ec413e46ecaa75bdf47fa626e17b75777b9b7c4c

Deleted build cache objects:

Total reclaimed space: 8.131GB

That command freed up 8GB of local storage space on my own macbook.

delete all stopped containers πŸ”—

You can use docker container prune to delete all stopped docker containers.

delete all volumes without associated containers πŸ”—

You can use docker volume prune to delete all volumes without associated containers.

remove unused networks πŸ”—

Use docker network prune to delete all unused networks. Unused network is not connected to any containers or do not have any containers attached to them.

