Cheatsheet collection

• Home
• Ansible
• Git
• GCP
• Docker
• Azure
• Terraform
• Helm
• ElasticSearch
• Kubernetes
• Istio
• OIDC
• PostgreSQL
• Terraform

---

Cleanup docker workspace

#stop all containers using their id
docker stop $(docker ps -q) 

# remove all stopped containers
docker rm -f $(docker ps -aq -f  status=exited) 

# remove all images
docker rmi -f $(docker images -a -q)

# remove all non-running containers
docker ps -a | grep Exited | awk '{print $1}' | xargs docker rm

# check images on your host machine
docker images
docker system info --format ''

# remove unused images
docker image prune -a

# remove stopped containers and delete dangling images
docker rm $(docker ps -aq -f status=exited) && docker image prune -a

Go templates

• go_templates

## docker list containers using Pretty-print containers using a Go template instead of using | and awk
docker ps --format " with "
docker ps --format ''

# as a table
docker ps --format "table  "

### check mounts volumes and binds
docker inspect -f '  => ' <INSERT_IMAGE_ID>

# list running containers names
docker ps --filter status=running --format ' '

# inspect ENV variables
docker inspect --format '' <IMAGE>/<CONTAINER>
docker inspect --format='' <CONTAINER>

# inspect volumes and their type
docker inspect -f '' <CONTAINER>

# inspect mounted volumes for a container
docker inspect --format='' <CONTAINER>

# list all mounts for all running containers
docker ps --no-trunc --format "\t\t"

# inspect env and entrypoint/cmd
docker inspect -f '  ' <CONTAINER>

# inspect docker network and attached containers | jq .
docker inspect network bridge --format "" | python -m json.tool

# nice table
docker ps --format "table  "

Docker images/registry

# save image as tarball
docker save -o tarfile.tar <IMAGE>
docker save <IMAGE> | gzip > <IMAGE>.tar.gz

# load image
docker load < <IMAGE>.tar.gz

# save and transfer image to another server
docker save <IMAGE> | bzip2 | ssh hostname.fqdn docker load 
docker save dejanualex/exporter | bzip2 | ssh hostname.fqdn docker load 

# list images
curl -k -X GET https://<USER>:<PASSWORD>@<REGISTRY>/v2/_catalog | python -m json.tool
curl -k -X GET https://<USER>:<PASSWORD>@<REGISTRY>/v2/_catalog | jq .

Manage Docker

# docker system info
docker system info --format ' '


# Usage:  docker system COMMAND

Commands:
  df          Show docker disk usage
  events      Get real time events from the server
  info        Display system-wide information
  prune       Remove unused data

Docker containers and networking

# get the container PID
docker inspect --format '' <CONTAINER_ID>

# shim abstract low-level details of the container runtime
# containerd-shim process in between containerd and bash
for j in $(for i in $(ps -C containerd-shim | awk 'FNR>1 {print $1}');do pgrep -P $i;done);do ps -p $j -o comm=;done

## list network interfaces
# default network driver is bridge
# overlay is the default network driver for swarm, it connects multiple Docker daemons together and enable swarm services to communicate with each other
docker network ls

# list containers in a network
docker network inspect bridge --format ""

Docker logging

# system config: /etc/docker/daemon.json
# user config: ~/daemon.json
{
  "log-driver": "journald"
}

docker info --format ''
docker info -f ''
# check the security module
docker system info --format ''

docker inspect --format='' <CONTAINER_ID>

# follow logs starting from the last 10 lines onwards
docker logs -f --tail 10 <CONTAINER_ID>
docker logs --since=1h <CONTAINER_ID>
docker logs <CONTAINER_ID> --since 10m --follow

# redirect stdout and stderr to a file
docker logs -f <CONTAINER_ID> > &> container.log
docker logs <CONTAINER_ID> > container.log 2>&1

# get container stats
docker stats <CONTAINER_ID>

# check container states e.g: OOMKilled, Dead (very usefull whend debugging)
docker container inspect prometheus_normal | jq .[].State

Docker registry

## search images
curl -k -XGET https://<USER>:<PASSWORD>@<REGISTRY>/v2/_catalog
docker search <REGISTRY>/<IMAGE>

# endpoint for docker registry
/v2/_catalog 
/v2/<IMAGE>/tags/list

# search dockerhub for images
docker search --format ": : " httpd
docker search --format ": : " nginx

# manifest schema https://docs.docker.com/registry/spec/manifest-v2-2/
# manifest command interacts solely with a Docker registry.
# Docker manifests describe an image’s layers and the architectures it supports
docker manifest inspect maven

Docker swarm stuff:

docker stack ls
docker stack service <stack_name>
docker service ps <service_name>

---

                    ___ _____
                   /\ (_)    \
                  /  \      (_,
                 _)  _\   _    \
                /   (_)\_( )____\
                \_     /    _  _/
                  ) /\/  _ (o)(
                  \ \_) (o)   /
                   \/________/         @dejanualex