Docekr安装

wget -O /etc/yum.repos.d/docker-ce.repo https://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo

curl -o /etc/yum.repos.d/docker-ce.repo https://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo

yum install -y docker-ce

vim /usr/lib/systemd/system/docker.service

ExecStartPost=/usr/sbin/iptables -P FORWARD ACCEPT //k8s 的报文转发依赖ACCEPT 启动 docker 时会自动设置为 DROP 需要在启动时 再设置为 ACCEPT
Enviroment="HTTPS_PROXY=https://xxx.xxx" //设置要代理的地址，可以不配置
Enviroment="NO_PROXY=127.0.0.1/8,192.0.0.1/16" //设置不代理某些地址，可以不配置

systemctl daemon-reload

systemctl start docker

docker pull hello-world
docker run -it hello-world
--------------------
Hello from Docker!
This message shows that your installation appears to be working correctly.

To generate this message, Docker took the following steps:
 1. The Docker client contacted the Docker daemon.
 2. The Docker daemon pulled the "hello-world" image from the Docker Hub.
    (amd64)
 3. The Docker daemon created a new container from that image which runs the
    executable that produces the output you are currently reading.
 4. The Docker daemon streamed that output to the Docker client, which sent it
    to your terminal.

To try something more ambitious, you can run an Ubuntu container with:
 $ docker run -it ubuntu bash

Share images, automate workflows, and more with a free Docker ID:
 https://hub.docker.com/

For more examples and ideas, visit:
 https://docs.docker.com/get-started/

systemctl enable docker

cat > /etc/sysctl.d/k8s.conf <<EOF
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1
EOF

sysctl -p /etc/sysctl.d/k8s.conf