Books & Videos

Docker in Production

Lessons from the Trenches

By Joe Johnston, Justin Cormack, Antoni Batchelli, John Fiedler, Milos Gajdos

Release Date: August 2015

Read on Safari with a 10-day trial

Where’s the cart? Now you can get everything on Safari. To purchase books, visit Amazon or your favorite retailer. Questions? See our FAQ or contact customer service:

1-800-889-8969 / 707-827-7019
support@oreilly.com

Many books and blog posts already cover individual topics related to installing and running Docker, but few resources exist to weave together the myriad and sometimes forehead-to-wall-thumping concerns of running Docker in production. Fear not, if you enjoyed the movie Inception, you will feel right at home running containers in virtual machines on servers in the cloud.

This book will give you a solid understanding of the building blocks and concerns of architecting and running Docker-based infrastructure in production.

If you have experience in DevOps and ops backgrounds then this is the book for you. Previous experience with both the basics of running servers in production as well as creating and managing containers is also highly recommended.

Chapter 1 Getting Started
1. Terminology
2. Development to Production
3. Multiple Ways to Use Docker
4. What to Expect
Chapter 2 The Stack
1. Build System
2. Image Repository
3. Host Management
4. Configuration Management
5. Deployment
6. Orchestration
Chapter 3 Example - Bare Bones Environment
1. Keeping the Pieces Simple
2. Keeping The Processes Simple
3. Systems in Detail
4. Cluster-wide, common and local configurations
5. Deploying services
6. Support services
7. Discussion
8. Future
9. Summary
Chapter 4 Example - Web Environment
1. Orchestration
2. Networking
3. Data storage
4. Logging
5. Monitoring
6. No worries about new dependencies
7. Zero downtime
8. Service rollbacks
9. Conclusion
Chapter 5 Example - Beanstalk Environment
1. Process to build containers
2. Logging
3. Monitoring
4. Security
5. Summary
Chapter 6 Security
1. Threat models
2. Containers and security
3. Kernel updates
4. Container updates
5. suid and guid binaries
6. root in containers
7. Capabilities
8. seccomp
9. Kernel security frameworks
10. Resource limits and cgroups
11. ulimit
12. User namespaces
13. Image verification
14. Running the docker daemon securely
15. Monitoring
16. Devices
17. Mount points
18. ssh
19. Secret distribution
20. Location
Chapter 7 Building Images
1. Not your father’s images
2. Image building fundamentals
3. Summary
Chapter 8 Storing Docker Images
1. Getting up and running with storing Docker images
2. Automated builds
3. Private repository
4. Scaling the Private registry
5. Maintenance
6. Making your private repository secure
7. Save/Load
8. Minimizing your image sizes
9. Other Image repository solutions
Chapter 9 CI/CD
1. Let everyone just build and push containers!
2. Build all images with a build system
3. Suggest or don’t allow the use of non standard practices
4. Use a standard base image
5. Integration testing with Docker
6. Summary
Chapter 10 Configuration Management
1. Configuration Management versus Containers
2. Configuration Management for Containers
3. Summary
Chapter 11 Docker Storage Drivers
1. AUFS
2. DeviceMapper
3. btrfs
4. overlay
5. vfs
6. Summary
Chapter 12 Docker Networking
1. Networking basics
2. IP address allocation
3. Domain name resolution
4. Service discovery
5. Advanced Docker networking
6. IPv6
7. Summary
Chapter 13 Scheduling
1. What is scheduling?
2. Strategies
3. Mesos
4. Kubernetes
5. OpenShift
Chapter 14 Service Discovery
1. DNS service discovery
2. Zookeeper
3. Service discovery with Zookeeper
4. etcd
5. consul
6. Eureka
7. Smartstack
8. nsqlookupd
9. Summary
Chapter 15 Logging and Monitoring
1. Logging
2. Monitoring
3. Summary

Books & Videos

Docker in Production

Lessons from the Trenches

Read on Safari with a 10-day trial

Table of Contents

Chapter 1 Getting Started

Terminology

Development to Production

Multiple Ways to Use Docker

What to Expect

Chapter 2 The Stack

Build System

Image Repository

Host Management

Configuration Management

Deployment

Orchestration

Chapter 3 Example - Bare Bones Environment

Keeping the Pieces Simple

Keeping The Processes Simple

Systems in Detail

Cluster-wide, common and local configurations

Deploying services

Support services

Discussion

Future

Summary

Chapter 4 Example - Web Environment

Orchestration

Networking

Data storage

Logging

Monitoring

No worries about new dependencies

Zero downtime

Service rollbacks

Conclusion

Chapter 5 Example - Beanstalk Environment

Process to build containers

Logging

Monitoring

Security

Summary

Chapter 6 Security

Threat models

Containers and security

Kernel updates

Container updates

suid and guid binaries

root in containers

Capabilities

seccomp

Kernel security frameworks

Resource limits and cgroups

ulimit

User namespaces

Image verification

Running the docker daemon securely

Monitoring

Devices

Mount points

ssh

Secret distribution

Location

Chapter 7 Building Images

Not your father’s images

Image building fundamentals

Summary

Chapter 8 Storing Docker Images

Getting up and running with storing Docker images

Automated builds

Private repository

Scaling the Private registry

Maintenance

Making your private repository secure

Save/Load

Minimizing your image sizes

Other Image repository solutions

Chapter 9 CI/CD

Let everyone just build and push containers!