2015-06-08 03:07:20 +00:00
|
|
|
<!--[metadata]>
|
|
|
|
|
+++
|
|
|
|
|
title = "Control and configure Docker with systemd"
|
|
|
|
|
description = "Controlling and configuring Docker using systemd"
|
|
|
|
|
keywords = ["docker, daemon, systemd, configuration"]
|
|
|
|
|
[menu.main]
|
|
|
|
|
parent = "smn_administrate"
|
|
|
|
|
weight = 7
|
|
|
|
|
+++
|
|
|
|
|
<![end-metadata]-->
|
|
|
|
|
|
|
|
|
|
# Control and configure Docker with systemd
|
2014-11-26 04:09:52 +00:00
|
|
|
|
|
|
|
|
Many Linux distributions use systemd to start the Docker daemon. This document
|
|
|
|
|
shows a few examples of how to customise Docker's settings.
|
|
|
|
|
|
|
|
|
|
## Starting the Docker daemon
|
|
|
|
|
|
|
|
|
|
Once Docker is installed, you will need to start the Docker daemon.
|
|
|
|
|
|
|
|
|
|
$ sudo systemctl start docker
|
|
|
|
|
# or on older distributions, you may need to use
|
|
|
|
|
$ sudo service docker start
|
|
|
|
|
|
|
|
|
|
If you want Docker to start at boot, you should also:
|
|
|
|
|
|
|
|
|
|
$ sudo systemctl enable docker
|
|
|
|
|
# or on older distributions, you may need to use
|
|
|
|
|
$ sudo chkconfig docker on
|
|
|
|
|
|
|
|
|
|
## Custom Docker daemon options
|
|
|
|
|
|
|
|
|
|
There are a number of ways to configure the daemon flags and environment variables
|
2015-06-08 04:28:45 +00:00
|
|
|
for your Docker daemon.
|
2014-11-26 04:09:52 +00:00
|
|
|
|
2015-08-04 16:47:48 +00:00
|
|
|
The recommended way is to use a systemd drop-in file. These are local files in
|
|
|
|
|
the `/etc/systemd/system/docker.service.d` directory. This could also be
|
|
|
|
|
`/etc/systemd/system/docker.service`, which also works for overriding the
|
|
|
|
|
defaults from `/lib/systemd/system/docker.service`.
|
2014-11-26 04:09:52 +00:00
|
|
|
|
2015-08-04 16:47:48 +00:00
|
|
|
However, if you had previously used a package which had an `EnvironmentFile`
|
|
|
|
|
(often pointing to `/etc/sysconfig/docker`) then for backwards compatibility,
|
|
|
|
|
you drop a file in the `/etc/systemd/system/docker.service.d`
|
|
|
|
|
directory including the following:
|
|
|
|
|
|
|
|
|
|
[Service]
|
|
|
|
|
EnvironmentFile=-/etc/sysconfig/docker
|
|
|
|
|
EnvironmentFile=-/etc/sysconfig/docker-storage
|
|
|
|
|
EnvironmentFile=-/etc/sysconfig/docker-network
|
|
|
|
|
ExecStart=
|
2015-08-10 12:48:08 +00:00
|
|
|
ExecStart=/usr/bin/docker daemon -H fd:// $OPTIONS \
|
2015-08-04 16:47:48 +00:00
|
|
|
$DOCKER_STORAGE_OPTIONS \
|
|
|
|
|
$DOCKER_NETWORK_OPTIONS \
|
|
|
|
|
$BLOCK_REGISTRY \
|
|
|
|
|
$INSECURE_REGISTRY
|
|
|
|
|
|
|
|
|
|
To check if the `docker.service` uses an `EnvironmentFile`:
|
2015-06-08 04:28:45 +00:00
|
|
|
|
|
|
|
|
$ sudo systemctl show docker | grep EnvironmentFile
|
|
|
|
|
EnvironmentFile=-/etc/sysconfig/docker (ignore_errors=yes)
|
|
|
|
|
|
2015-08-04 16:47:48 +00:00
|
|
|
Alternatively, find out where the service file is located:
|
2015-06-08 04:28:45 +00:00
|
|
|
|
|
|
|
|
$ sudo systemctl status docker | grep Loaded
|
|
|
|
|
Loaded: loaded (/usr/lib/systemd/system/docker.service; enabled)
|
|
|
|
|
$ sudo grep EnvironmentFile /usr/lib/systemd/system/docker.service
|
|
|
|
|
EnvironmentFile=-/etc/sysconfig/docker
|
|
|
|
|
|
|
|
|
|
You can customize the Docker daemon options using override files as explained in the
|
2015-07-10 21:29:07 +00:00
|
|
|
[HTTP Proxy example](#http-proxy) below. The files located in `/usr/lib/systemd/system`
|
2015-06-08 04:28:45 +00:00
|
|
|
or `/lib/systemd/system` contain the default options and should not be edited.
|
2014-11-26 04:09:52 +00:00
|
|
|
|
|
|
|
|
### Runtime directory and storage driver
|
|
|
|
|
|
|
|
|
|
You may want to control the disk space used for Docker images, containers
|
|
|
|
|
and volumes by moving it to a separate partition.
|
|
|
|
|
|
2014-12-08 02:35:37 +00:00
|
|
|
In this example, we'll assume that your `docker.service` file looks something like:
|
2014-11-26 04:09:52 +00:00
|
|
|
|
|
|
|
|
[Unit]
|
|
|
|
|
Description=Docker Application Container Engine
|
2015-06-08 04:28:45 +00:00
|
|
|
Documentation=https://docs.docker.com
|
2014-11-26 04:09:52 +00:00
|
|
|
After=network.target docker.socket
|
|
|
|
|
Requires=docker.socket
|
2014-12-08 02:40:12 +00:00
|
|
|
|
2014-11-26 04:09:52 +00:00
|
|
|
[Service]
|
|
|
|
|
Type=notify
|
2015-08-04 16:47:48 +00:00
|
|
|
ExecStart=/usr/bin/docker daemon -H fd://
|
2014-11-26 04:09:52 +00:00
|
|
|
LimitNOFILE=1048576
|
|
|
|
|
LimitNPROC=1048576
|
2014-12-08 02:40:12 +00:00
|
|
|
|
2014-11-26 04:09:52 +00:00
|
|
|
[Install]
|
|
|
|
|
Also=docker.socket
|
|
|
|
|
|
2015-08-04 16:47:48 +00:00
|
|
|
This will allow us to add extra flags via a drop-in file (mentioned above) by
|
|
|
|
|
placing a file containing the following in the `/etc/systemd/system/docker.service.d`
|
|
|
|
|
directory:
|
2014-11-26 04:09:52 +00:00
|
|
|
|
2015-08-04 16:47:48 +00:00
|
|
|
[Service]
|
|
|
|
|
ExecStart=
|
|
|
|
|
ExecStart=/usr/bin/docker daemon -H fd:// --graph /mnt/docker-data --storage-driver btrfs
|
2014-11-26 04:09:52 +00:00
|
|
|
|
|
|
|
|
You can also set other environment variables in this file, for example, the
|
|
|
|
|
`HTTP_PROXY` environment variables described below.
|
|
|
|
|
|
2015-07-10 21:29:07 +00:00
|
|
|
To modify the ExecStart configuration, specify an empty configuration followed
|
|
|
|
|
by a new configuration as follows:
|
|
|
|
|
|
|
|
|
|
[Service]
|
|
|
|
|
ExecStart=
|
2015-08-10 12:48:08 +00:00
|
|
|
ExecStart=/usr/bin/docker daemon -H fd:// --bip=172.17.42.1/16
|
2015-07-10 21:29:07 +00:00
|
|
|
|
|
|
|
|
If you fail to specify an empty configuration, Docker reports an error such as:
|
|
|
|
|
|
|
|
|
|
docker.service has more than one ExecStart= setting, which is only allowed for Type=oneshot services. Refusing.
|
|
|
|
|
|
2015-04-21 15:50:09 +00:00
|
|
|
### HTTP proxy
|
2014-11-26 04:09:52 +00:00
|
|
|
|
|
|
|
|
This example overrides the default `docker.service` file.
|
|
|
|
|
|
2014-12-08 02:40:12 +00:00
|
|
|
If you are behind a HTTP proxy server, for example in corporate settings,
|
2014-11-26 04:09:52 +00:00
|
|
|
you will need to add this configuration in the Docker systemd service file.
|
|
|
|
|
|
2014-12-08 02:44:07 +00:00
|
|
|
First, create a systemd drop-in directory for the docker service:
|
2014-11-26 04:09:52 +00:00
|
|
|
|
2014-12-08 02:44:07 +00:00
|
|
|
mkdir /etc/systemd/system/docker.service.d
|
2014-11-26 04:09:52 +00:00
|
|
|
|
2014-12-08 02:44:07 +00:00
|
|
|
Now create a file called `/etc/systemd/system/docker.service.d/http-proxy.conf`
|
|
|
|
|
that adds the `HTTP_PROXY` environment variable:
|
|
|
|
|
|
|
|
|
|
[Service]
|
2014-11-26 04:09:52 +00:00
|
|
|
Environment="HTTP_PROXY=http://proxy.example.com:80/"
|
|
|
|
|
|
|
|
|
|
If you have internal Docker registries that you need to contact without
|
|
|
|
|
proxying you can specify them via the `NO_PROXY` environment variable:
|
|
|
|
|
|
2015-11-15 08:11:27 +00:00
|
|
|
Environment="HTTP_PROXY=http://proxy.example.com:80/" "NO_PROXY=localhost,127.0.0.1,docker-registry.somecorporation.com"
|
2014-11-26 04:09:52 +00:00
|
|
|
|
|
|
|
|
Flush changes:
|
|
|
|
|
|
|
|
|
|
$ sudo systemctl daemon-reload
|
2014-12-08 02:40:12 +00:00
|
|
|
|
2015-06-08 04:28:45 +00:00
|
|
|
Verify that the configuration has been loaded:
|
|
|
|
|
|
|
|
|
|
$ sudo systemctl show docker --property Environment
|
|
|
|
|
Environment=HTTP_PROXY=http://proxy.example.com:80/
|
|
|
|
|
|
2014-11-26 04:09:52 +00:00
|
|
|
Restart Docker:
|
|
|
|
|
|
|
|
|
|
$ sudo systemctl restart docker
|
|
|
|
|
|
|
|
|
|
## Manually creating the systemd unit files
|
|
|
|
|
|
|
|
|
|
When installing the binary without a package, you may want
|
|
|
|
|
to integrate Docker with systemd. For this, simply install the two unit files
|
|
|
|
|
(service and socket) from [the github
|
|
|
|
|
repository](https://github.com/docker/docker/tree/master/contrib/init/systemd)
|
|
|
|
|
to `/etc/systemd/system`.
|
