How to configure docker endpoint?

I installed docker as a plugin on devstack following this: . I had to make some changes though, instead of: ln -sf $(cd heat/contrib/docker-plugin/plugin; pwd) /usr/lib/heat/docker, I did this: ln -sf $(cd docker/resources; pwd) /usr/lib/heat/docker and then I manually added this: /opt/stack/heat/contrib/docker/docker/resources into etc/heat/heat.conf.

After that I'm trying to deploy this template

Then I get the following error.

| stack_status_reason  | Resource CREATE failed: ConnectionError: 
|                                 | HTTPConnectionPool(host='', port=80): Max
|                                 | retries exceeded with url: /v1.12/containers/create
|                                 | (Caused by <class 'socket.error'>: [Errno 113]                                                                       
|                                 | EHOSTUNREACH)                                                   

I think the error is about the "docker_endpoint". Thus I delete this item from the template. Then I get the following error.

| stack_status_reason  | Resource CREATE failed: ConnectionError:
|                                 | UnixHTTPConnectionPool(host='localhost', port=None):                                  
|                                 | Max retries exceeded with url:                       
|                                 | /run/docker.sock/v1.12/containers/create (Caused by                                                    
|                                 | <class 'socket.error'>: [Errno 13] EACCES)

Dose anyone have any idea about how to configure "docker_endpoint"?

normally you will connect via libvirt to docker but anynway. Check with netstat the port of your running docker daemon. Normally 5555 or 2375

If you can't find an open port is your docker daemon configured for local connections via unix socket:


so you need to change your docker settings or try to connect via the correct port/socket.

Cheers Heiko

In the OpenStack, where should docker daemon run? On the control node, or on every compute nodes?

Docker needs to run on each compute node. It's the same with all other hypervisors instead that docker isn't a real hypervisor :)

So if I run docker daemon on compute node, when I run the HEAT Template, the docker_endpoint should be configured to the address of the compute node, instead of the instance ip address?

The template you're using originates with a blog post from Docker, which is unfortunately broken in virtually every respect. Suffice to say that where it has the comment (yes, this is ignored by Heat):


the original author intended that it configure the server to be running Docker.

The current Docker plugin is not an interface to an OpenStack Containers-as-a-Service (which doesn't exist yet); it's just a resource type that allows you to connect to an existing Docker server.

In most circumstances, you should not run Docker on either the control node or the compute nodes, because it is not multi-tenant and authenticated with Keystone. You should run it on a VM supplied by Nova, since that is private to the tenant that created it.

Other folks have got a bit further down the road of turning the example in the blog post into an actually working example, although I don't know of anyone who has actually succeeded yet to the best of my knowledge. Check out the following question for some more clues:

