In docker, expose means marking information and is a way of document expression; expose can allow developers to quickly understand which services are opened by Image in the dockerfile. It cannot directly open the port, which is convenient for operation. When maintenance personnel use containers, they know which ports to open. If there is no expose port, services between Containers can also access each other.
The operating environment of this tutorial: linux7.3 system, docker version 19.03, Dell G3 computer.
What does expose mean in docker?
The expose in Dockerfile is tag information. The port cannot be opened directly, so that the operation and maintenance personnel know to open it when using the container. which ports. When using docker run -itd -P xxx:xxx , capital -P will map the port defined using EXPOSE in the Dockerfile file, and there is no need to manually -p: this form.
EXPOSE is just a way of document expression. In the dockerfile, developers can quickly understand which services are opened by Image. It has no practical significance. If there is no EXPOSE port, services between Containers can also access each other.
The difference between expose and publish (run -p) in Docker
The main record here is a small doubt I discovered recently using docker. To sum up:
In docker, what are the differences and connections between the docker run -p exposed interface when the command line is started and the expose interface in the dockerfile.
The specific description is as follows:
For example, I first Expose a port 8080 in the Dockerfile
EXPOSE 8080
Then I build this image for later use Use
docker build -t myimage - Dockerfile
The next step is to use docker run to start a container instance of this image, and publish a port
docker container run -d -p 8080 myimage
There is a question I mentioned here, since I have already added it in the Dockerfile Expose port 8080 is declared here. Why, I still need to publish this port (-p). What is the difference and connection between the two? Can I
docker container run -d myimage
directly? In this case, are there any ports exposed?
After testing, (the testing process is omitted, interested friends can test it by themselves. In fact, there are essential differences between the two, and there is also a certain degree of correlation.
I list these four combinations here
A, neither Expose nor run -p
B in Dockerfile, only Expose this port in Dockerfile
C, at the same time Expose in the Dockerfile, and run -p
D, only run -p
1------For case A, start in this container The service cannot be accessed by the host host and external network, nor by the link container. It can only be used inside this container.
2--------For case B, start it in this container. The service cannot be accessed by the outside world of docker (host and other hosts), but can be accessed by containers of other links through container
link
3--------For In case C, the started cotnainer can be accessed by both the outside world of docker and the container of the link.
4---------For case D, in fact, docker has made special implicit Conversion, equivalent to case C, can be accessed by the outside world or by the link's container (this is true because docker believes that since you have to open port
to the outside world, it is equivalent to other containers that can definitely be accessed, so docker does automatic Expose
Recommended learning: "docker video tutorial"
The above is the detailed content of What does expose mean in docker?. For more information, please follow other related articles on the PHP Chinese website!
Docker on Linux: Best Practices and TipsApr 13, 2025 am 12:15 AMBest practices for using Docker on Linux include: 1. Create and run containers using dockerrun commands, 2. Use DockerCompose to manage multi-container applications, 3. Regularly clean unused images and containers, 4. Use multi-stage construction to optimize image size, 5. Limit container resource usage to improve security, and 6. Follow Dockerfile best practices to improve readability and maintenance. These practices can help users use Docker efficiently, avoid common problems and optimize containerized applications.
Using Docker with Linux: A Comprehensive GuideApr 12, 2025 am 12:07 AMUsing Docker on Linux can improve development and deployment efficiency. 1. Install Docker: Use scripts to install Docker on Ubuntu. 2. Verify the installation: Run sudodockerrunhello-world. 3. Basic usage: Create an Nginx container dockerrun-namemy-nginx-p8080:80-dnginx. 4. Advanced usage: Create a custom image, build and run using Dockerfile. 5. Optimization and Best Practices: Follow best practices for writing Dockerfiles using multi-stage builds and DockerCompose.
Docker Monitoring: Gathering Metrics and Tracking Container HealthApr 10, 2025 am 09:39 AMThe core of Docker monitoring is to collect and analyze the operating data of containers, mainly including indicators such as CPU usage, memory usage, network traffic and disk I/O. By using tools such as Prometheus, Grafana and cAdvisor, comprehensive monitoring and performance optimization of containers can be achieved.
Docker Swarm: Building Scalable and Resilient Container ClustersApr 09, 2025 am 12:11 AMDockerSwarm can be used to build scalable and highly available container clusters. 1) Initialize the Swarm cluster using dockerswarminit. 2) Join the Swarm cluster to use dockerswarmjoin--token:. 3) Create a service using dockerservicecreate-namemy-nginx--replicas3nginx. 4) Deploy complex services using dockerstackdeploy-cdocker-compose.ymlmyapp.
Docker with Kubernetes: Container Orchestration for Enterprise ApplicationsApr 08, 2025 am 12:07 AMHow to use Docker and Kubernetes to perform container orchestration of enterprise applications? Implement it through the following steps: Create a Docker image and push it to DockerHub. Create Deployment and Service in Kubernetes to deploy applications. Use Ingress to manage external access. Apply performance optimization and best practices such as multi-stage construction and resource constraints.
Docker Troubleshooting: Diagnosing and Resolving Common IssuesApr 07, 2025 am 12:15 AMDocker FAQs can be diagnosed and solved through the following steps: 1. View container status and logs, 2. Check network configuration, 3. Ensure that the volume mounts correctly. Through these methods, problems in Docker can be quickly located and fixed, improving system stability and performance.
Docker Interview Questions: Ace Your DevOps Engineering InterviewApr 06, 2025 am 12:01 AMDocker is a must-have skill for DevOps engineers. 1.Docker is an open source containerized platform that achieves isolation and portability by packaging applications and their dependencies into containers. 2. Docker works with namespaces, control groups and federated file systems. 3. Basic usage includes creating, running and managing containers. 4. Advanced usage includes using DockerCompose to manage multi-container applications. 5. Common errors include container failure, port mapping problems, and data persistence problems. Debugging skills include viewing logs, entering containers, and viewing detailed information. 6. Performance optimization and best practices include image optimization, resource constraints, network optimization and best practices for using Dockerfile.
Docker Security Hardening: Protecting Your Containers From VulnerabilitiesApr 05, 2025 am 12:08 AMDocker security enhancement methods include: 1. Use the --cap-drop parameter to limit Linux capabilities, 2. Create read-only containers, 3. Set SELinux tags. These strategies protect containers by reducing vulnerability exposure and limiting attacker capabilities.
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
SublimeText3 Chinese version
Chinese version, very easy to use
mPDF
mPDF is a PHP library that can generate PDF files from UTF-8 encoded HTML. The original author, Ian Back, wrote mPDF to output PDF files "on the fly" from his website and handle different languages. It is slower than original scripts like HTML2FPDF and produces larger files when using Unicode fonts, but supports CSS styles etc. and has a lot of enhancements. Supports almost all languages, including RTL (Arabic and Hebrew) and CJK (Chinese, Japanese and Korean). Supports nested block-level elements (such as P, DIV),
DVWA
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, to help web developers better understand the process of securing web applications, and to help teachers/students teach/learn in a classroom environment Web application security. The goal of DVWA is to practice some of the most common web vulnerabilities through a simple and straightforward interface, with varying degrees of difficulty. Please note that this software
Dreamweaver Mac version
Visual web development tools
SecLists
SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.
