Container applications 1280 Container name [-a-zA-Z0-9]+ Container name must be alphanumeric and can contain hyphens Allow host networks in container Container capabilities/permissions net-admin net-bind-service net-raw setpcap sys-admin sys-time net-admin Network operations (interface, firewall, routing tables) net-bind-service Bind a socket to privileged ports (port numbers less than 1024) net-raw Permission to create raw network sockets setpcap Capability sets (from bounded or inherited set) sys-admin Administation operations (quotactl, mount, sethostname, setdomainame) sys-time Permission to set system clock (net-admin|net-bind-service|net-raw|setpcap|sys-admin|sys-time) #include Add a host device to the container Source device (Example: "/dev/x") txt Source device Destination container device (Example: "/dev/x") txt Destination container device #include Add custom environment variables [-_a-zA-Z0-9]+ Environment variable name must be alphanumeric and can contain hyphen and underscores Set environment option value txt Set environment option value Image name in the hub-registry Memory (RAM) available to this container (default: 512) u32:0 Unlimited u32:1-16384 Container memory in megabytes (MB) Container memory must be in range 0 to 16384 MB 512 Shared memory available to this container (default: 64) u32:0 Unlimited u32:1-8192 Container memory in megabytes (MB) Container memory must be in range 0 to 8192 MB 64 Attach user defined network to container container network Assign static IP address to container ipv4 IPv4 address Publish port to the container Source host port u32:1-65535 Source host port start-end Source host port range (e.g. 10025-10030) Destination container port u32:1-65535 Destination container port start-end Destination container port range (e.g. 10025-10030) Transport protocol used for port mapping (default: tcp) tcp udp tcp Use Transmission Control Protocol for given port udp Use User Datagram Protocol for given port (tcp|udp) tcp Restart options for container (default: on-failure) no on-failure always no Do not restart containers on exit on-failure Restart containers when they exit with a non-zero exit code, retrying indefinitely always Restart containers when they exit, regardless of status, retrying indefinitely (no|on-failure|always) on-failure Mount a volume into the container Source host directory txt Source host directory Destination container directory txt Destination container directory Volume access mode ro/rw (default: rw) ro rw ro Volume mounted into the container as read-only rw Volume mounted into the container as read-write (ro|rw) rw Network name [-_a-zA-Z0-9]{1,11} Network name cannot be longer than 11 characters Network description Prefix which allocated to that network ipv4net IPv4 network prefix ipv6net IPv6 network prefix Registry Name (default: docker.io, quay.io) docker.io quay.io