containers - what are they and atomic
TRANSCRIPT
![Page 1: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/1.jpg)
ContainersHosts and lxc, docker..
@RedHatNordics@sshaaf
![Page 2: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/2.jpg)
Containment , always been ...
Zones
LXC
![Page 3: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/3.jpg)
Namespaces
namespace wraps a particular global system resource in an abstraction that tells the processes within the namespace that they have their own isolated instance of the global resource
![Page 4: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/4.jpg)
Namespaces
Mount - CLONE_NEWNS, Linux 2.4.19
IPC - CLONE_NEWIPC, Linux 2.6.19
PID - CLONE_NEWPID, Linux 2.6.24
UTS - CLONE_NEWUTS, Linux 2.6.19
Network - CLONE_NEWNET, started in Linux 2.6.24
User - CLONE_NEWUSER, started in Linux 2.6.23
![Page 5: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/5.jpg)
Cgroups
Control Groups provide a mechanism for aggregating/partitioning sets oftasks, and all their future children, into hierarchical groups withspecialized behaviour.
Ref: Kernel.org
![Page 6: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/6.jpg)
CgroupsSubsystems, hierarchies.
Parameters: Memory, disk, cpu ..
CPU Set
Mem
CPU
Top Set
![Page 7: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/7.jpg)
I got containerized
![Page 8: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/8.jpg)
Software packaging concept that typically includes an application and all of its runtime dependencies.● Easy to deploy and portable
across host systems● Isolates applications on a
host operating system. In RHEL,this is done through:● Control Groups (cgroups)● kernel namespaces● SELinux, sVirt
What is?
![Page 9: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/9.jpg)
Loose 1 not all
...and compromised, there is far less exposure. Only the container process is lost – lose the process not the system.
![Page 10: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/10.jpg)
Overview
![Page 11: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/11.jpg)
Containers in RHEL
![Page 12: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/12.jpg)
Image based containers
![Page 13: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/13.jpg)
Virt and containers
![Page 14: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/14.jpg)
![Page 15: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/15.jpg)
![Page 16: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/16.jpg)
![Page 17: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/17.jpg)
![Page 18: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/18.jpg)
![Page 19: Containers - What are they and Atomic](https://reader034.vdocuments.net/reader034/viewer/2022042716/55a5a9141a28ab70398b467d/html5/thumbnails/19.jpg)