azure-container-instances

Compare original and translation side by side

🇺🇸

Original

English

🇨🇳

Translation

Chinese

Azure Container Instances Skill

This skill provides expert guidance for Azure Container Instances. Covers troubleshooting, best practices, decision making, architecture & design patterns, limits & quotas, security, configuration, and deployment. It combines local quick-reference content with remote documentation fetching capabilities.

本Skill为Azure Container Instances提供专业指导，涵盖故障排查、最佳实践、决策制定、架构与设计模式、限制与配额、安全、配置和部署。它结合了本地快速参考内容与远程文档获取能力。

How to Use This Skill

如何使用本Skill

IMPORTANT for Agent: Use the Category Index below to locate relevant sections. For categories with line ranges (e.g.,
L35-L120
), use
read_file
with the specified lines. For categories with file links (e.g.,
[security.md](security.md)
), use
read_file
on the linked reference file

IMPORTANT for Agent: If
metadata.generated_at
is more than 3 months old, suggest the user pull the latest version from the repository. If
mcp_microsoftdocs
tools are not available, suggest the user install it: Installation Guide

This skill requires network access to fetch documentation content:

Preferred: Use

mcp_microsoftdocs:microsoft_docs_fetch

with query string

from=learn-agent-skill

. Returns Markdown.

Fallback: Use

fetch_webpage

with query string

from=learn-agent-skill&accept=text/markdown

. Returns Markdown.

Agent注意事项：使用下方的分类索引查找相关章节。对于带有行范围的分类（例如
L35-L120
），使用
read_file
读取指定行。对于带有文件链接的分类（例如
[security.md](security.md)
），使用
read_file
读取链接的参考文件

Agent注意事项：如果
metadata.generated_at
已超过3个月，建议用户从仓库拉取最新版本。如果
mcp_microsoftdocs
工具不可用，建议用户安装：安装指南

本Skill需要网络访问权限来获取文档内容：

首选方式：使用
```
mcp_microsoftdocs:microsoft_docs_fetch
```
，查询字符串为
```
from=learn-agent-skill
```
，返回Markdown格式内容。
备用方式：使用
```
fetch_webpage
```
，查询字符串为
```
from=learn-agent-skill&accept=text/markdown
```
，返回Markdown格式内容。

Category Index

分类索引

Category	Lines	Description
Troubleshooting	L36-L42	Diagnosing ACI issues by viewing logs/events, understanding provisioning/runtime states, and troubleshooting common deployment, startup, and container runtime failures.
Best Practices	L43-L47	Guidance on designing and running ACI workloads reliably: resource sizing, networking, storage, security, scaling, image management, and operational best practices.
Decision Making	L48-L53	Guidance on cost-optimizing ACI with Spot containers and using prediction-based sizing to configure and right-size Azure Container Instances standby pools.
Architecture & Design Patterns	L54-L60	Design patterns for giving ACI containers static inbound/outbound IPs using Application Gateway, firewalls, and NAT Gateway for controlled, predictable network egress/ingress.
Limits & Quotas	L61-L68	ACI limits on CPU/memory, regional quotas, standby pool constraints, and how virtual network integration affects capacity and resource availability.
Security	L69-L83	Securing Azure Container Instances: TLS/HTTPS setup, image and secret protection, managed identities, RBAC, DNS safety, ACR auth, CMK encryption, and Azure Policy enforcement.
Configuration	L84-L116	Configuring ACI container groups: YAML, env vars, DNS, volumes, probes, GPUs, restart/entrypoint, standby pools, networking, lifecycle, logging, and monitoring.
Deployment	L117-L120	Using GitHub Actions to build, push, and automatically deploy container images to Azure Container Instances, including workflow YAML setup and authentication configuration.

分类	行范围	描述
故障排查	L36-L42	通过查看日志/事件、了解预配/运行时状态，排查常见的部署、启动和容器运行时故障，诊断ACI问题。
最佳实践	L43-L47	关于可靠设计和运行ACI工作负载的指导：资源规划、网络、存储、安全、扩展、镜像管理和运维最佳实践。
决策制定	L48-L53	指导如何通过Spot容器优化ACI成本，以及使用基于预测的规划来配置和合理调整Azure Container Instances备用池的规模。
架构与设计模式	L54-L60	使用Application Gateway、防火墙和NAT Gateway为ACI容器提供静态入站/出站IP的设计模式，实现可控、可预测的网络出/入站流量。
限制与配额	L61-L68	ACI在CPU/内存、区域配额、备用池约束方面的限制，以及虚拟网络集成如何影响容量和资源可用性。
安全	L69-L83	保护Azure Container Instances：TLS/HTTPS设置、镜像和密钥保护、托管标识、RBAC、DNS安全、ACR认证、CMK加密和Azure Policy实施。
配置	L84-L116	配置ACI容器组：YAML、环境变量、DNS、卷、探针、GPU、重启/入口点、备用池、网络、生命周期、日志和监控。
部署	L117-L120	使用GitHub Actions构建、推送并自动将容器镜像部署到Azure Container Instances，包括工作流YAML设置和身份验证配置。

Troubleshooting

故障排查

Topic	URL
Retrieve Azure Container Instances logs and events for troubleshooting	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-get-logs
Troubleshoot common deployment and runtime issues in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-troubleshooting
Interpret Azure Container Instances provisioning and runtime states	https://learn.microsoft.com/en-us/azure/container-instances/container-state

主题	URL
检索Azure Container Instances日志和事件以进行故障排查	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-get-logs
排查Azure Container Instances中常见的部署和运行时问题	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-troubleshooting
解读Azure Container Instances的预配和运行时状态	https://learn.microsoft.com/en-us/azure/container-instances/container-state

Best Practices

最佳实践

Topic	URL
Apply Azure Container Instances workload best practices	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-best-practices-and-considerations

主题	URL
应用Azure Container Instances工作负载最佳实践	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-best-practices-and-considerations

Decision Making

决策制定

Topic	URL
Decide when to use ACI Spot containers for cost savings	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-spot-containers-overview
Use prediction results to right-size Azure Container Instances standby pools	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-prediction-results

主题	URL
决定何时使用ACI Spot容器以节省成本	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-spot-containers-overview
使用预测结果合理调整Azure Container Instances备用池规模	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-prediction-results

Architecture & Design Patterns

架构与设计模式

Topic	URL
Expose Azure Container Instances via Application Gateway static IP	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-application-gateway
Configure static outbound IP for Azure Container Instances with firewall	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-egress-ip-address
Configure Azure Container Instances egress via NAT Gateway	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-nat-gateway

主题	URL
通过Application Gateway静态IP暴露Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-application-gateway
使用防火墙为Azure Container Instances配置静态出站IP	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-egress-ip-address
通过NAT Gateway配置Azure Container Instances出站流量	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-nat-gateway

Limits & Quotas

限制与配额

Topic	URL
Use Big Containers with ACI vCPU and memory limits	https://learn.microsoft.com/en-us/azure/container-instances/big-containers
Check ACI resource availability and quota limits by region	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-resource-and-quota-limits
FAQ and limits for Azure Container Instances standby pools	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-faq
Use Azure Container Instances with virtual networks	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-virtual-network-concepts

主题	URL
在ACI vCPU和内存限制下使用大型容器	https://learn.microsoft.com/en-us/azure/container-instances/big-containers
按区域检查ACI资源可用性和配额限制	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-resource-and-quota-limits
Azure Container Instances备用池的常见问题和限制	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-faq
在虚拟网络中使用Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-virtual-network-concepts

Security

安全

Topic	URL
Configure automatic HTTPS for Azure Container Instances using Caddy	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-container-group-automatic-ssl
Enable TLS for Azure Container Instances with Nginx sidecar	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-container-group-ssl
Encrypt Azure Container Instances deployment data with customer-managed keys	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-encrypt-data
Secure images and secrets for Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-image-security
Enable and use managed identities in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-managed-identity
Configure RBAC permissions for Azure Container Instances standby pools	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-configure-permissions
Configure ACI to pull images from ACR using service principals	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-using-azure-container-registry
Mount secret volumes in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-volume-secret
Set ACI DNS name reuse policy to prevent subdomain takeover	https://learn.microsoft.com/en-us/azure/container-instances/how-to-reuse-dns-names
Use built-in Azure Policy definitions for Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/policy-reference
Use managed identities for ACI image pulls from private ACR	https://learn.microsoft.com/en-us/azure/container-instances/using-azure-container-registry-mi

主题	URL
使用Caddy为Azure Container Instances配置自动HTTPS	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-container-group-automatic-ssl
使用Nginx边车为Azure Container Instances启用TLS	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-container-group-ssl
使用客户管理密钥加密Azure Container Instances部署数据	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-encrypt-data
保护Azure Container Instances的镜像和密钥	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-image-security
在Azure Container Instances中启用和使用托管标识	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-managed-identity
为Azure Container Instances备用池配置RBAC权限	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-configure-permissions
配置ACI使用服务主体从ACR拉取镜像	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-using-azure-container-registry
在Azure Container Instances中挂载密钥卷	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-volume-secret
设置ACI DNS名称重用策略以防止子域名接管	https://learn.microsoft.com/en-us/azure/container-instances/how-to-reuse-dns-names
针对Container Instances使用内置Azure Policy定义	https://learn.microsoft.com/en-us/azure/container-instances/policy-reference
使用托管标识从私有ACR为ACI拉取镜像	https://learn.microsoft.com/en-us/azure/container-instances/using-azure-container-registry-mi

Configuration

配置

Topic	URL
Use config maps to manage settings in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-config-map
Configure custom DNS for Azure Container Instances container groups	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-custom-dns
Configure environment variables for Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-environment-variables
Execute commands in running Azure Container Instances containers	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-exec
Deploy GPU-enabled workloads on Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-gpu
Configure init containers in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-init-container
Configure liveness probes for Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-liveness-probe
Send Azure Container Instances resource logs to Azure Monitor	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-log-analytics
Configure readiness probes for Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-readiness-probe
YAML configuration reference for Azure Container Instances container groups	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-reference-yaml
Configure ACI restart policies for run-once container tasks	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-restart-policy
Create standby pools for Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-create
Retrieve details of Azure Container Instances standby pools	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-get-details
Understand and query health state of Azure Container Instances standby pools	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-health-state
Use standby pools to reduce Azure Container Instances scale-out latency	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-overview
Request container groups from Azure Container Instances standby pools	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-request-container
Update or delete Azure Container Instances standby pools	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-update-delete
Monitor Azure Container Instances standby pool events with Log Analytics	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pools-monitor-pool-events
Override container entrypoint command in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-start-command
Manually stop and start Azure Container Instances container groups	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-stop-start
Update running container groups in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-update
Configure ACI container groups in Azure virtual networks via CLI	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-vnet
Mount Azure Files volumes in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-volume-azure-files
Use emptyDir volumes to share data in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-volume-emptydir
Mount gitRepo volumes in Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-volume-gitrepo
Configure monitoring and alerts for Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/monitor-azure-container-instances
Configure monitoring and alerts for Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/monitor-azure-container-instances
Monitoring data reference for Azure Container Instances	https://learn.microsoft.com/en-us/azure/container-instances/monitor-azure-container-instances-reference
View Azure Container Instances logs in Log Analytics via portal	https://learn.microsoft.com/en-us/azure/container-instances/viewing-logs-in-portal

主题	URL
使用配置映射管理Azure Container Instances中的设置	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-config-map
为Azure Container Instances容器组配置自定义DNS	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-custom-dns
为Azure Container Instances配置环境变量	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-environment-variables
在运行中的Azure Container Instances容器中执行命令	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-exec
在Azure Container Instances上部署支持GPU的工作负载	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-gpu
在Azure Container Instances中配置初始化容器	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-init-container
为Azure Container Instances配置存活探针	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-liveness-probe
将Azure Container Instances资源日志发送到Azure Monitor	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-log-analytics
为Azure Container Instances配置就绪探针	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-readiness-probe
Azure Container Instances容器组的YAML配置参考	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-reference-yaml
为一次性容器任务配置ACI重启策略	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-restart-policy
为Azure Container Instances创建备用池	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-create
检索Azure Container Instances备用池的详细信息	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-get-details
了解并查询Azure Container Instances备用池的健康状态	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-health-state
使用备用池减少Azure Container Instances的扩展延迟	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-overview
从Azure Container Instances备用池请求容器组	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-request-container
更新或删除Azure Container Instances备用池	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pool-update-delete
使用Log Analytics监控Azure Container Instances备用池事件	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-standby-pools-monitor-pool-events
在Azure Container Instances中覆盖容器入口点命令	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-start-command
手动停止和启动Azure Container Instances容器组	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-stop-start
更新运行中的Azure Container Instances容器组	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-update
通过CLI在Azure虚拟网络中配置ACI容器组	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-vnet
在Azure Container Instances中挂载Azure Files卷	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-volume-azure-files
使用emptyDir卷在Azure Container Instances中共享数据	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-volume-emptydir
在Azure Container Instances中挂载gitRepo卷	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-volume-gitrepo
为Azure Container Instances配置监控和警报	https://learn.microsoft.com/en-us/azure/container-instances/monitor-azure-container-instances
为Azure Container Instances配置监控和警报	https://learn.microsoft.com/en-us/azure/container-instances/monitor-azure-container-instances
Azure Container Instances的监控数据参考	https://learn.microsoft.com/en-us/azure/container-instances/monitor-azure-container-instances-reference
通过门户在Log Analytics中查看Azure Container Instances日志	https://learn.microsoft.com/en-us/azure/container-instances/viewing-logs-in-portal

Deployment

部署

Topic	URL
Automate ACI deployments with GitHub Actions workflow configuration	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-github-action

主题	URL
使用GitHub Actions工作流配置自动化ACI部署	https://learn.microsoft.com/en-us/azure/container-instances/container-instances-github-action