|
 |
3a2fa17 |
[Unit]
|
|
|
3a2fa17 |
Description=Docker Application Container Engine
|
|
|
3a2fa17 |
Documentation=https://docs.docker.com
|
|
 |
41eeacf |
After=docker.socket network-online.target firewalld.service
|
|
|
41eeacf |
Requires=docker.socket
|
|
|
3a2fa17 |
Wants=network-online.target
|
|
|
3a2fa17 |
|
|
|
3a2fa17 |
[Service]
|
|
|
3a2fa17 |
Type=notify
|
|
|
3a2fa17 |
EnvironmentFile=-/etc/sysconfig/docker
|
|
|
3a2fa17 |
# the default is not to use systemd for cgroups because the delegate issues still
|
|
|
3a2fa17 |
# exists and systemd currently does not support the cgroup feature set required
|
|
|
3a2fa17 |
# for containers run by docker
|
|
|
3a2fa17 |
ExecStart=/usr/bin/dockerd \
|
|
|
41eeacf |
--host=fd:// \
|
|
|
3a2fa17 |
--exec-opt native.cgroupdriver=systemd \
|
|
|
3a2fa17 |
$OPTIONS
|
|
|
3a2fa17 |
ExecReload=/bin/kill -s HUP $MAINPID
|
|
|
3a2fa17 |
# Having non-zero Limit*s causes performance problems due to accounting overhead
|
|
|
3a2fa17 |
# in the kernel. We recommend using cgroups to do container-local accounting.
|
|
|
3a2fa17 |
LimitNOFILE=infinity
|
|
|
3a2fa17 |
LimitNPROC=infinity
|
|
|
3a2fa17 |
LimitCORE=infinity
|
|
|
3a2fa17 |
# Uncomment TasksMax if your systemd version supports it.
|
|
|
3a2fa17 |
# Only systemd 226 and above support this version.
|
|
|
3a2fa17 |
#TasksMax=infinity
|
|
|
3a2fa17 |
TimeoutStartSec=0
|
|
|
3a2fa17 |
# set delegate yes so that systemd does not reset the cgroups of docker containers
|
|
|
3a2fa17 |
#Delegate=yes
|
|
|
3a2fa17 |
# kill only the docker process, not all processes in the cgroup
|
|
|
3a2fa17 |
KillMode=process
|
|
|
3a2fa17 |
# restart the docker process if it exits prematurely
|
|
|
3a2fa17 |
Restart=on-failure
|
|
|
3a2fa17 |
StartLimitBurst=3
|
|
|
3a2fa17 |
StartLimitInterval=60s
|
|
|
3a2fa17 |
|
|
|
3a2fa17 |
[Install]
|
|
|
3a2fa17 |
WantedBy=multi-user.target
|