在升级到kernel-3.17的centos-6.5上安装docker，直接执行以下命令：

yum install golangyum install docker-iochkconfig add dockerservice docker start

[root@osd2 ~]# service docker startStarting cgconfig service: Error: cannot mount memory to /cgroup/memory: No such file or directory/sbin/cgconfigparser; error loading /etc/cgconfig.conf: Cgroup mounting failedFailed to parse /etc/cgconfig.conf                         [FAILED]Starting docker:	                                   [  OK  ][root@osd2 ~]# service docker start[root@osd2 ~]# service docker statusdocker dead but pid file exists

[root@osd2 ~]#  /etc/init.d/cgconfig statusStopped[root@osd2 ~]# /etc/init.d/cgconfig startStarting cgconfig service: Error: cannot mount memory to /cgroup/memory: No such file or directory/sbin/cgconfigparser; error loading /etc/cgconfig.conf: Cgroup mounting failedFailed to parse /etc/cgconfig.conf                         [FAILED][root@osd2 ~]# ls /cgroup/blkio  devices  freezer  memory  net_cls

[root@osd2 ~]# cat /etc/cgconfig.conf##  Copyright IBM Corporation. 2007##  Authors:	Balbir Singh 
    
     #  This program is free software; you can redistribute it and/or modify it#  under the terms of version 2.1 of the GNU Lesser General Public License#  as published by the Free Software Foundation.##  This program is distributed in the hope that it would be useful, but#  WITHOUT ANY WARRANTY; without even the implied warranty of#  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.## See man cgconfig.conf for further details.## By default, mount all controllers to /cgroup/
     
      mount {	cpuset	= /cgroup/cpuset;	cpu	= /cgroup/cpu;	cpuacct	= /cgroup/cpuacct;#	memory	= /cgroup/memory;	devices	= /cgroup/devices;	freezer	= /cgroup/freezer;	net_cls	= /cgroup/net_cls;	blkio	= /cgroup/blkio;}
     
    

[root@osd2 ~]# service docker statusdocker dead but pid file exists[root@osd2 ~]# tailf /var/log/docker \nMon Jan  5 14:04:33 CST 2015\n2015/01/05 14:04:33 docker daemon: 1.3.2 39fa2fa/1.3.2; execdriver: native; graphdriver: [910cf963] +job serveapi(unix:///var/run/docker.sock)[910cf963] +job init_networkdriver()[info] Listening for HTTP on unix (/var/run/docker.sock)Unable to enable network bridge NAT: iptables failed: iptables -I POSTROUTING -t nat -s 172.17.42.1/16 ! -o docker0 -j MASQUERADE: iptables v1.4.7: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)Perhaps iptables or your kernel needs to be upgraded. (exit status 3)[910cf963] -job init_networkdriver() = ERR (1)2015/01/05 14:04:33  (exit status 3)

[root@lm backup]# lsmod | grep natebtable_nat             2009  0 ebtables               18135  1 ebtable_natiptable_nat             6051  1 nf_nat                 23316  2 ipt_MASQUERADE,iptable_natnf_conntrack_ipv4       9506  4 iptable_nat,nf_natnf_conntrack           80390  6 xt_conntrack,xt_state,ipt_MASQUERADE,iptable_nat,nf_nat,nf_conntrack_ipv4ip_tables              17831  3 iptable_nat,iptable_mangle,iptable_filter[root@lm backup]# find /lib/modules/2.6.32-504.1.3.el6.x86_64/ -name "*nat*"/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_proto_dccp.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_proto_udplite.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_ftp.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_proto_sctp.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_proto_gre.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_sip.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_tftp.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_pptp.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/iptable_nat.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_snmp_basic.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_amanda.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_h323.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/ipv4/netfilter/nf_nat_irc.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/bridge/netfilter/ebt_snat.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/bridge/netfilter/ebt_dnat.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/bridge/netfilter/ebtable_nat.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/net/sched/act_nat.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/drivers/net/natsemi.ko/lib/modules/2.6.32-504.1.3.el6.x86_64/kernel/drivers/net/phy/national.ko

[root@osd2 /]# lsmod | grep natebtable_nat             2071  0 ebtables               26518  1 ebtable_nat[root@osd2 modprobe.d]# find /lib/modules/3.17.4/ -name "*nat*"/lib/modules/3.17.4/kernel/net/sched/act_nat.ko/lib/modules/3.17.4/kernel/net/bridge/netfilter/ebt_snat.ko/lib/modules/3.17.4/kernel/net/bridge/netfilter/ebt_dnat.ko/lib/modules/3.17.4/kernel/net/bridge/netfilter/ebtable_nat.ko/lib/modules/3.17.4/kernel/drivers/net/ethernet/natsemi/lib/modules/3.17.4/kernel/drivers/net/ethernet/natsemi/natsemi.ko/lib/modules/3.17.4/kernel/drivers/net/phy/national.ko

缺少了nat模块，才引起了上述错误，需要重新编译内核或使用旧内核。