Containerization with Docker

After preparing LLM application code for deployment, a significant challenge involves ensuring consistent execution across various environments. Development machines, testing servers, and final production environments often have subtle (or not-so-subtle) differences in operating systems, installed libraries, and system configurations. These discrepancies can lead to the dreaded "it works on my machine" problem, causing deployment failures and operational headaches. Containerization, specifically using Docker, provides a powerful solution to this challenge by bundling an application and its dependencies into a standardized, portable unit.

What are Docker Containers?

Think of a Docker container as a lightweight, standalone, executable package that includes everything needed to run a piece of software: the code, runtime (like the Python interpreter), system tools, system libraries, and settings. Unlike traditional virtual machines (VMs) that virtualize an entire operating system, containers virtualize the operating system kernel. This means containers share the host system's kernel but have their own isolated process space, filesystem, and network interfaces. This approach makes them much more lightweight and faster to start than VMs.

The blueprint for creating a container is called a Docker image. An image is a read-only template containing the application and its dependencies. You build an image using instructions defined in a special file called a Dockerfile. When you run an image, you create a writable instance of it, which is the container.

Why Use Docker for LLM Applications?

LLM applications often rely on a specific stack of Python libraries (like LangChain, LlamaIndex, OpenAI's client, vector database clients, web frameworks like FastAPI) and potentially system dependencies. Docker excels in managing these requirements:

Environment Consistency: Docker guarantees that your application runs in the exact same environment, regardless of where the container is deployed. This eliminates inconsistencies between development, staging, and production.
Dependency Management: It packages all necessary libraries (specified in your requirements.txt or similar) within the image. You don't need to manually install dependencies on the target machine; Docker handles it during the image build process.
Isolation: Containers run in isolation from each other and the host system, preventing conflicts between different applications or library versions.
Portability: A Docker image built on your laptop can run on any server or cloud platform that has Docker installed, simplifying deployment significantly.
Scalability: Container orchestration platforms (like Kubernetes) make it easier to scale containerized applications up or down based on demand.

Creating a Dockerfile for Your LLM Application

A Dockerfile is a text file containing a series of commands that Docker uses to build an image. Let's outline the typical steps for creating a Dockerfile for a Python LLM application, perhaps one serving an API endpoint using FastAPI:

Choose a Base Image: Start with an official Python base image. Select a version that matches the Python version you developed with. Using specific version tags (e.g., python:3.10-slim) is recommended over latest for reproducibility. The slim variants are smaller, which is often desirable.
Set Working Directory: Define the directory inside the container where your application code will reside.
Copy Requirements: Copy your dependency file (requirements.txt) into the container.
Install Dependencies: Run pip install to install the libraries listed in your requirements file. Separating the requirement installation from copying the rest of the code allows Docker to cache this layer. If your requirements don't change, Docker won't need to reinstall them on subsequent builds, speeding up the process.
Copy Application Code: Copy the rest of your application source code into the working directory.
Expose Port: If your application runs a web server (like FastAPI), specify the port it listens on.
Define Runtime Command: Specify the command to execute when the container starts. This is typically the command to run your Python application (e.g., uvicorn main:app --host 0.0.0.0 --port 8000).

Here's an example Dockerfile:

# Dockerfile

# 1. Use an official Python runtime as a parent image
FROM python:3.10-slim

# 2. Set the working directory in the container
WORKDIR /app

# 3. Copy the requirements file into the container at /app
COPY requirements.txt .

# 4. Install any needed packages specified in requirements.txt
# Use --no-cache-dir to reduce image size
RUN pip install --no-cache-dir -r requirements.txt

# 5. Copy the rest of the application code into the container at /app
COPY . .

# 6. Make port 8000 available outside this container
EXPOSE 8000

# 7. Define environment variable for API key (will be set during 'docker run')
# It's good practice to declare expected env vars
ENV OPENAI_API_KEY="" 
# Add other necessary keys (e.g., ANTHROPIC_API_KEY)

# 8. Run app.py when the container launches
# Use 0.0.0.0 to make it accessible from outside the container
CMD ["uvicorn", "main:app", "--host", "0.0.0.0", "--port", "8000"]

Important Note on API Keys: Never hardcode sensitive information like API keys directly into your Dockerfile or source code. Use environment variables, as shown with ENV OPENAI_API_KEY="". The actual key value should be injected when you run the container.

Building and Running the Docker Image

Once you have your Dockerfile and your application code (including main.py and requirements.txt), you can build the image and run a container.

Build the Image: Open your terminal in the directory containing the Dockerfile and run:

# -t tags the image with a name (e.g., llm-app) and optionally a version (e.g., :latest)
# . specifies the build context (the current directory)
docker build -t llm-app:latest .

Docker will execute the instructions in your Dockerfile step by step.

Run the Container: After the image is built successfully, run it:

# -d runs the container in detached mode (in the background)
# -p maps port 80 on the host to port 8000 in the container
# -e sets the environment variable OPENAI_API_KEY inside the container
# --name gives the running container a recognizable name
docker run -d -p 80:8000 \
  -e OPENAI_API_KEY="your_actual_openai_api_key" \
  --name my-llm-app llm-app:latest

Replace "your_actual_openai_api_key" with your real key. If your application needs other keys, add more -e flags. Now, your LLM application should be accessible on http://localhost:80 (or your server's IP address if deployed remotely).

Visualizing the Container

The following diagram illustrates how Docker packages your application:

The diagram shows the Docker container packaging the Python code, its dependencies, and the runtime. The container runs isolated on the host OS and interacts with external services like LLM APIs and potentially a vector store.

Approaches for LLM Applications in Docker

Image Size: LLM dependencies can sometimes lead to large Docker images. Use a .dockerignore file to exclude unnecessary files (like virtual environments, test data, .git directory) from the build context. Consider multi-stage builds for more complex applications to keep the final image lean.
Resource Management: LLM inferences can be CPU or memory-intensive. When running containers, especially in production, configure resource limits (CPU, memory) using Docker options (--cpus, --memory) or orchestration platform settings to ensure stability and fair resource allocation.
GPU Access: If you are running models locally that require GPU acceleration (less common for API-based workflows but possible), you'll need Docker configured with GPU support (e.g., using the NVIDIA Container Toolkit) and specify GPU access when running the container.

By containerizing your Python LLM application with Docker, you create a standardized, portable, and isolated environment. This significantly streamlines the deployment process, reduces environment-related bugs, and provides a foundation for building scalable and maintainable LLM-powered systems. It's a fundamental practice for moving from development scripts to operational reliability.

Build LLM apps faster with Kerb

Cleaner syntax. Built-in debugging. Production-ready from day one.

Built for the AI systems behind ApX Machine Learning

Was this section helpful?

References

Docker overview, Docker Documentation, 2024 - Provides fundamental concepts of Docker, including containers, images, and Dockerfiles, offering a solid starting point for understanding containerization.
Best practices for writing Dockerfiles, Docker Documentation, 2024 (Docker) - Offers guidelines and techniques for creating efficient, maintainable, and secure Docker images, covering topics like multi-stage builds and caching strategies.
Docker Deep Dive, Nigel Poulton, 2025 (Nigel Poulton Ltd.) - A comprehensive book offering an extensive look into Docker fundamentals, image creation, container management, and practical deployment scenarios.