Telegraf is available as an Official image on DockerHub. Official images are a curated set of Docker Images that also automatically get security updates from Docker, follow a set of best practices, and are available via a shortcut syntax which omits the organization.
InfluxData maintains Debian and Alpine based images across the last three minor releases. To pull the latest Telegraf images:
# latest Debian-based image
docker pull telegraf
# latest Alpine-based image
docker pull telegraf:alpineSee the Telegraf DockerHub page for complete details on available images, versions, and tags.
Nightly builds are available and are generated from the master branch each day at around midnight UTC. The artifacts include both binary packages, RPM & DEB packages, as well as nightly Docker images that are hosted on quay.io.
The Dockerfiles for these images are available for users to use as well.
Telegraf does require the ability to use lockable memory when running by default. In some deployments for Docker a container may not have enough lockable memory, which results in the following warning:
W! Insufficient lockable memory 64kb when 72kb is required. Please increase the limit for Telegraf in your Operating System!
or this error:
panic: could not acquire lock on 0x7f7a8890f000, limit reached? [Err: cannot allocate memory]
Users have two options:
- Increase the ulimit in the container. The user does this with the
ulimit -lcommand. To both see and set the value. For docker, there is a--ulimitflag that could be used, like--ulimit memlock=8192:8192as well. - Add the
--unprotectedflag to the command arguments to not use locked memory and instead store secrets in unprotected memory. This is less secure as secrets could find their way into paged out memory and can be written to disk unencrypted, therefore this is opt-in. For docker look at updating theCMDused to include this flag.