Skip to content

engine: freshness #23125

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 8 commits into
base: main
Choose a base branch
from
Open

engine: freshness #23125

Changes from 1 commit
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
2585291
engine
ArthurFlag Jul 21, 2025
a81a152
install
ArthurFlag Jul 21, 2025
fd57681
centos
ArthurFlag Jul 21, 2025
d24440e
debian
ArthurFlag Jul 21, 2025
d45768e
fedora
ArthurFlag Jul 21, 2025
02d9404
rhel
ArthurFlag Jul 21, 2025
00b0bf4
sles
ArthurFlag Jul 21, 2025
82b8d28
tweaks
ArthurFlag Jul 23, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
63 changes: 23 additions & 40 deletions content/manuals/engine/install/debian.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,25 +22,16 @@ To get started with Docker Engine on Debian, make sure you

### Firewall limitations

> [!WARNING]
>
> Before you install Docker, make sure you consider the following
> security implications and firewall incompatibilities.

- If you use ufw or firewalld to manage firewall settings, be aware that
when you expose container ports using Docker, these ports bypass your
firewall rules. For more information, refer to
[Docker and ufw](/manuals/engine/network/packet-filtering-firewalls.md#docker-and-ufw).
- Docker is only compatible with `iptables-nft` and `iptables-legacy`.
Firewall rules created with `nft` are not supported on a system with Docker installed.
Make sure that any firewall rulesets you use are created with `iptables` or `ip6tables`,
and that you add them to the `DOCKER-USER` chain,
see [Packet filtering and firewalls](/manuals/engine/network/packet-filtering-firewalls.md).
When exposing container ports with Docker, these ports bypass `ufw` or `firewalld` rules.
See [Docker and ufw](/manuals/engine/network/packet-filtering-firewalls.md#docker-and-ufw) for details.
Docker supports only `iptables-nft` and `iptables-legacy`.
Rules created with `nft` are not supported on a system with Docker installed.
Use `iptables` or `ip6tables` and add rules to the `DOCKER-USER` chain.
See [Packet filtering and firewalls](/manuals/engine/network/packet-filtering-firewalls.md).

### OS requirements

To install Docker Engine, you need the 64-bit version of one of these Debian
versions:
Docker Engine requires a 64-bit version of one of these Debian releases:

- Debian Trixie 13 (testing)
- Debian Bookworm 12 (stable)
Expand All @@ -51,13 +42,8 @@ and ppc64le (ppc64el) architectures.

### Uninstall old versions

Before you can install Docker Engine, you need to uninstall any conflicting packages.

Your Linux distribution may provide unofficial Docker packages, which may conflict
with the official packages provided by Docker. You must uninstall these packages
before you install the official version of Docker Engine.

The unofficial packages to uninstall are:
Uninstall unofficial or conflicting Docker packages before installing Docker Engine.
Remove the following packages if present:

- `docker.io`
- `docker-compose`
Expand All @@ -75,12 +61,11 @@ Run the following command to uninstall all conflicting packages:
$ for pkg in docker.io docker-doc docker-compose podman-docker containerd runc; do sudo apt-get remove $pkg; done
```

`apt-get` might report that you have none of these packages installed.
> [!NOTE]
> `apt-get` might report that you have none of these packages installed.
> Images, containers, volumes, and networks in `/var/lib/docker/` are not removed automatically.

Images, containers, volumes, and networks stored in `/var/lib/docker/` aren't
automatically removed when you uninstall Docker. If you want to start with a
clean installation, and prefer to clean up any existing data, read the
[uninstall Docker Engine](#uninstall-docker-engine) section.
For a clean install, see [uninstall Docker Engine](#uninstall-docker-engine).

## Installation methods

Expand Down Expand Up @@ -135,7 +120,7 @@ Docker from the repository.
> Replace this part with the codename of the corresponding Debian release,
> such as `bookworm`.

2. Install the Docker packages.
1. Install the Docker packages.

{{< tabs >}}
{{< tab name="Latest" >}}
Expand Down Expand Up @@ -171,7 +156,7 @@ Docker from the repository.
{{< /tab >}}
{{< /tabs >}}

3. Verify that the installation is successful by running the `hello-world` image:
1. Verify that the installation is successful by running the `hello-world` image:

```console
$ sudo docker run hello-world
Expand All @@ -192,19 +177,17 @@ choosing the new version you want to install.

### Install from a package

If you can't use Docker's `apt` repository to install Docker Engine, you can
download the `deb` file for your release and install it manually. You need to
download a new file each time you want to upgrade Docker Engine.
If you can't use the `apt` repository, download and install `.deb` files manually:

<!-- markdownlint-disable-next-line -->
1. Go to [`{{% param "download-url-base" %}}/dists/`]({{% param "download-url-base" %}}/dists/).

2. Select your Debian version in the list.
1. Select your Debian version in the list.

3. Go to `pool/stable/` and select the applicable architecture (`amd64`,
1. Go to `pool/stable/` and select the applicable architecture (`amd64`,
`armhf`, `arm64`, or `s390x`).

4. Download the following `deb` files for the Docker Engine, CLI, containerd,
1. Download the following `deb` files for the Docker Engine, CLI, containerd,
and Docker Compose packages:

- `containerd.io_<version>_<arch>.deb`
Expand All @@ -213,7 +196,7 @@ download a new file each time you want to upgrade Docker Engine.
- `docker-buildx-plugin_<version>_<arch>.deb`
- `docker-compose-plugin_<version>_<arch>.deb`

5. Install the `.deb` packages. Update the paths in the following example to
1. Install the `.deb` packages. Update the paths in the following example to
where you downloaded the Docker packages.

```console
Expand All @@ -226,7 +209,7 @@ download a new file each time you want to upgrade Docker Engine.

The Docker daemon starts automatically.

6. Verify that the installation is successful by running the `hello-world` image:
1. Verify that the installation is successful by running the `hello-world` image:

```console
$ sudo service docker start
Expand Down Expand Up @@ -255,15 +238,15 @@ To upgrade Docker Engine, download the newer package files and repeat the
$ sudo apt-get purge docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin docker-ce-rootless-extras
```

2. Images, containers, volumes, or custom configuration files on your host
1. Images, containers, volumes, or custom configuration files on your host
aren't automatically removed. To delete all images, containers, and volumes:

```console
$ sudo rm -rf /var/lib/docker
$ sudo rm -rf /var/lib/containerd
```

3. Remove source list and keyrings
1. Remove source list and keyrings

```console
$ sudo rm /etc/apt/sources.list.d/docker.list
Expand Down