Last updated on January 11, 2025 pm
第一步 添加SWAP
wget -O box.sh https://raw.githubusercontent.com/BlueSkyXN/SKY-BOX/main/box.sh && chmod +x box.sh && clear && sudo ./box.sh
- 18 大小输入4096,设置4G大小的swap空间
第二步 开启BBR
wget -O box.sh https://raw.githubusercontent.com/BlueSkyXN/SKY-BOX/main/box.sh && chmod +x box.sh && clear && sudo ./box.sh
- 17 11 开启BBR-FQ
- sudo reboot
第三步 修改时区
- timedatectl list-timezones
- sudo timedatectl set-timezone Asia/Shanghai
第四步 修改SSH端口
- sudo nano /etc/ssh/sshd_config
- 修改 Port 22 为 Port 2022
- sudo service sshd restart
- 新开一个SSH连接测试修改是否成功
- 蜜罐:FakeSSH
1 2
| docker run -d --restart=always -p 22:22 --name fakessh fffaraz/fakessh docker logs -f fakessh
|
附加 修改 DNS
- 有效避免 docker 内各种莫名奇妙的 DNS 解析错误
1 2 3 4
| rm -rf /etc/resolv.conf && cat > /etc/resolv.conf <<EOF nameserver 8.8.8.8 nameserver 1.1.1.1 EOF
|
第五步 安装docker
- 新版docker自带compose命令,使用
docker compose
即可
- (国内)
curl -fsSL https://get.docker.com | bash -s docker --mirror Aliyun
- (国际)
curl -fsSL https://get.docker.com | bash
1 2 3 4 5 6 7 8 9 10 11 12 13
| (换源) sudo sed -i 's/archive.ubuntu.com/mirrors.ustc.edu.cn/g' /etc/apt/sources.list sudo apt update sudo apt install apt-transport-https ca-certificates curl gnupg-agent software-properties-common curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add - ARCH_VERSION=$(if [[ $(arch) == "arm64" || $(arch) == 'aarch64' ]]; then echo 'arm64'; elif [[ $(arch) == "armhf" ]]; then echo 'armhf'; else echo 'amd64'; fi) sudo add-apt-repository "deb [arch=$ARCH_VERSION] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" sudo apt update && sudo apt install docker-ce sudo systemctl status docker LATEST_VERSION=$(curl -s https://api.github.com/repos/docker/compose/releases/latest | awk -F'"' '/tag_name/{print $4}') (镜像) sudo curl -L "https://get.daocloud.io/docker/compose/releases/download/$LATEST_VERSION/docker-compose-$(uname -s)-$(uname -m)" > /usr/local/bin/docker-compose (国际) sudo curl -L "https://github.com/docker/compose/releases/download/$LATEST_VERSION/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose sudo chmod +x /usr/local/bin/docker-compose docker-compose --version
|
附加 建设自己的镜像源
附加 windows 安装
- 访问商店获取 Windows Subsystem for Linux
wsl --version
- 下载 Docker Desktop Installer
- 将文件夹加入 Windows Defender 的排除项
- 打开
Docker Desktop
,然后选择 Settings > Resources > Proxies
,勾上 Manual proxy
HTTP
和 HTTPS
均填入 http://127.0.0.1:7890
第六步 添加 docker 镜像源
1 2 3 4 5 6
| { "registry-mirrors":[ "https://hub-mirror.c.163.com/", "https://docker.mirrors.ustc.edu.cn/" ] }
|
1 2 3
| nano /etc/docker/daemon.json systemctl daemon-reload systemctl restart docker
|
第八步 离线获取容器镜像示例
1 2 3 4 5 6
| wget https://raw.githubusercontent.com/NotGlop/docker-drag/master/docker_pull.py python3 docker_pull.py nkpro/chrome-novnc@sha256:379ef4901f65495fb200b60fe2f87ba1346ce7df91cbe807365dba57c5dcd8d5
docker load < nkpro_chrome-novnc.tar docker images docker tag ba39b3ae6c10 nkpro/chrome-novnc:latest
|
第九步 更新容器镜像
- sudo docker-compose pull && sudo docker-compose up -d --remove-orphans
- sudo docker image prune
附加 镜像内操作
导出文件
1 2 3
| docker create --name temp_container hagb/docker-easyconnect:cli \ && docker cp temp_container:/usr/local/bin/start.sh . \ && docker rm temp_container
|
常用命令
1 2
| docker compose exec -it easyconnect busybox ping www.baidu.com docker compose exec -it easyconnect cat /usr/share/sangfor/EasyConnect/resources/logs/DNS.log
|
附加 关闭系统自动更新
nano /etc/update-manager/release-upgrades
,修改Prompt 为 never
sudo sed -i.bak 's/1/0/' /etc/apt/apt.conf.d/10periodic
sudo sed -i.bak 's/1/0/' /etc/apt/apt.conf.d/20auto-upgrades
sudo systemctl stop unattended-upgrades
sudo systemctl disable unattended-upgrades
sudo apt remove unattended-upgrades
sudo apt purge snapd
- 最后重启服务器
sudo reboot
附加 清理Docker容器日志
1 2
| nano ~/clean_docker_log.sh && chmod +x ~/clean_docker_log.sh sudo ~/clean_docker_log.sh
|
1 2 3 4 5 6 7 8 9 10 11 12 13
| #!/bin/sh echo "======== start clean docker containers logs ========" logs=$(find /var/lib/docker/containers/ -name *-json.log) for log in $logs do echo "clean logs : $log" cat /dev/null > $log done echo "======== end clean docker containers logs ========"
|
附加 非root用户
Podman
Singularity
1 2 3
| singularity pull --name vep.sif docker://ensemblorg/ensembl-vep mkdir $HOME/vep_data singularity exec vep.sif vep --dir $HOME/vep_data --help
|
【记录】DOCKER安装流程
https://hexo.limour.top/DOCKER-an-zhuang-liu-cheng-ji-lu