Containers - (Austin Cloud Meetup April 2016)

6 likes•16,251 views

This document discusses containers and how they differ from virtual machines. It explains that containers leverage existing features in the Linux kernel like namespaces and cgroups to provide isolation. Containers run a single process, while VMs run an entire guest operating system. The document also discusses how container orchestration systems like Kubernetes can provide clustering, scheduling, and self-healing of container workloads. It notes how immutable infrastructure and configuration management are important when using containers at scale.

Technology

100

Android Super NES Emulator
http://www.superretro16.com/

Container Technology is
provided by the Linux
Kernel

Everything you need to create and
run containers already exists in the
linux kernel

CHROOT PROVIDES
Isolate Process & File systems

PID Namespaces Provide
Process Isolation

PID NameSpace 1
PID NameSpace 2
PID NameSpace 3
PID NameSpace 4

PID NameSpace 1
PID NameSpace 2
PID NameSpace 3
PID NameSpace 4
CHROOT ?

NET Namespaces Provide
Network Isolation

Root NET Namespace
NET Namespace 1
NET Namespace 2

Network your chroots together inside the
kernel

Network your chroots together inside the
kernel
Sounds like - VM Hypervisor

Container is NOT a VM
VM’s run entire OS

Container is NOT a VM
VM’s run entire OS
Containers run a single process

Remember, when you start a container, you are just
starting a process with namespaces

Existing container
workloads on VMs
1X DataCenters

Infrastructure is in a known state.
Prevent Infrastructure drift.
Self Healing

Container Images treated as
immutable
No more Infrastructure Drift

Prevent Infrastructure drift
Infrastructure is in a known state
Self Healing

What is Kubernetes
Kubernetes is an open source orchestration system for Docker
containers. It handles scheduling onto nodes in a compute cluster and
actively manages workloads to ensure that their state matches the
user's declared intentions.

Kubernetes Monitoring
Builtin support for application level health checks
(DB Checks, Socket & Http checks, etc…)
Automatically restart crashed processes (aka containers)
Natively React to Monitor Events

MANAGED BY KUBERNETES
Self healing
No Infrastructure Drift
Infrastructure is in a known state
Reliability

Why do we need Configuration
Management?

What about Operating System Configuration?

Immutable Operating Systems
Immutable Infrastructure
AKA

All you need is a OS that can run
Containers

No Package Manager
Immutable Config files

Why configure the OS?
Our containers can contain all OS config
files and daemons necessary for our
application to run

How to configure all the disparate containers?

Brian Redbeard
Principal Architect CoreOS

“If we do our job correctly, future releases
of CoreOS will NOT have SSH server
installed”

How you would design your
infrastructure/software if you were unable
to SSH into the host OS?

Typical Operating System
Kernel
Configuration
Storage
Workloads

Typical Operating System
Kernel
Configuration
Storage
Linux Kernel
/etc
FileSystems EXT4
Workloads Processes

Typical Operating System
Kernel
Configuration
Storage
Linux Kernel
/etc
FileSystems EXT4
Kubernetes
etcd
ISCSI Block or
FSAS
Workloads Processes Containers

Infinite CPU Power
Distributed Scale
Self Healing
Always Available

GIFEE
Google Infrastructure For Everyone Else

All I WANT
create my application in a container
make it scale
I don’t want it to go down

Blog: http://thrawn01.org
Twitter: @thrawn01

More Related Content

PDF

Docker managementKarthik Gaekwad

PDF

DockerCon SF 2015: Docker in the New York Times NewsroomDocker, Inc.

PDF

Introduction to Docker - Learning containerization XP conference 2016XP Conference India

PDF

DockerCon EU 2015: Official Repos and Project NautilusDocker, Inc.

PPTX

Louisville Software Engineering Meet Up: Continuous Integration Using JenkinsJames Strong

PDF

Jenkins + Docker = Continuous ImprovementUdaypal Aarkoti

PDF

Jenkins ReviewbotYardena Meymann

PPTX

Docker and DevopsDocker, Inc.

Docker managementKarthik Gaekwad

DockerCon SF 2015: Docker in the New York Times NewsroomDocker, Inc.

Introduction to Docker - Learning containerization XP conference 2016XP Conference India

DockerCon EU 2015: Official Repos and Project NautilusDocker, Inc.

Louisville Software Engineering Meet Up: Continuous Integration Using JenkinsJames Strong

Jenkins + Docker = Continuous ImprovementUdaypal Aarkoti

Jenkins ReviewbotYardena Meymann

Docker and DevopsDocker, Inc.

What's hot (20)

PDF

DockerCon SF 2015: Ben Golub's Keynote Day 1Docker, Inc.

PDF

DevOps Transformation in TechnicalOpsta

PDF

DockerCon SF 2015: How to Build a Secure DevOps Environment for the GovernmentDocker, Inc.

PPTX

CI CD using Docker and JenkinsSukant Kumar

PDF

DockerCon SF 2015: Docker at LyftDocker, Inc.

PDF

Building a Service Delivery Platform - JCICPH 2014Andreas Rehn

PDF

A Reference Architecture to Enable Visibility and Traceability across the Ent...CollabNet

PPTX

From Continuous Integration to DevOpsIBM UrbanCode Products

PDF

Docker Enables DevOpsBoyd Hemphill

PPTX

SkyBase - a Devops Platform for Hybrid CloudVlad Kuusk

PPTX

SD DevOps Meet-up - Jenkins 2.0 and Pipeline-as-CodeBrian Dawson

PPTX

Chugging Our Own "Craft Brew” – HPE’s Journey Towards Containers-as-a-Service...Docker, Inc.

PPTX

Deploying Apps on OpenStackAnne Gentle

PPTX

Continuous Delivery with Jenkins and Wildfly (2014)Tracy Kennedy

PDF

DockerCon EU 2015: Continuous Integration with Jenkins, Docker and ComposeDocker, Inc.

PDF

Git and GitHub for DocumentationAnne Gentle

PPTX

Practical Approaches to Cloud Native SecurityKarthik Gaekwad

PPTX

DockerCon 15 Keynote - Day 2Docker, Inc.

PDF

calmio-cicd-containersBalaji Janakiram

PDF

Scaling Jenkins Udaypal Aarkoti

DockerCon SF 2015: Ben Golub's Keynote Day 1Docker, Inc.

DevOps Transformation in TechnicalOpsta

DockerCon SF 2015: How to Build a Secure DevOps Environment for the GovernmentDocker, Inc.

CI CD using Docker and JenkinsSukant Kumar

DockerCon SF 2015: Docker at LyftDocker, Inc.

Building a Service Delivery Platform - JCICPH 2014Andreas Rehn

A Reference Architecture to Enable Visibility and Traceability across the Ent...CollabNet

From Continuous Integration to DevOpsIBM UrbanCode Products

Docker Enables DevOpsBoyd Hemphill

SkyBase - a Devops Platform for Hybrid CloudVlad Kuusk

SD DevOps Meet-up - Jenkins 2.0 and Pipeline-as-CodeBrian Dawson

Chugging Our Own "Craft Brew” – HPE’s Journey Towards Containers-as-a-Service...Docker, Inc.

Deploying Apps on OpenStackAnne Gentle

Continuous Delivery with Jenkins and Wildfly (2014)Tracy Kennedy

DockerCon EU 2015: Continuous Integration with Jenkins, Docker and ComposeDocker, Inc.

Git and GitHub for DocumentationAnne Gentle

Practical Approaches to Cloud Native SecurityKarthik Gaekwad

DockerCon 15 Keynote - Day 2Docker, Inc.

calmio-cicd-containersBalaji Janakiram

Scaling Jenkins Udaypal Aarkoti

Similar to Containers - (Austin Cloud Meetup April 2016) (20)

PDF

Containers what are they, and why are they important v2.1Derrick Wippler

PPTX

Container & kubernetesTed Jung

PPTX

0x02 - Windows Privilege Esc - A Low Level Explanation of Token TheftRussell Sanford

PPTX

0x002 - Windows Priv Esc - A Low Level Explanation of Token TheftRussell Sanford

PPTX

Weave User Group Talk - DockerCon 2017 RecapPatrick Chanezon

PPTX

DockerCon 16 General Session Day 1Docker, Inc.

PDF

Core OSvyhliluk

PDF

Dev Environments: The Next GenerationTravis Thieman

PDF

Containers and Nutanix - Acropolis Container ServicesNEXTtour

PDF

ResinioAndreaLisanti1

PDF

Containerize! Between Docker and Jube.Henryk Konsek

PPTX

To Build My Own Cloud with Blackjack…Sergey Dzyuban

PDF

The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, OrchestrationErica Windisch

PPTX

A Survey of Container Security in 2016: A Security Update on Container PlatformsSalman Baset

PDF

Dockers zero to heroNicolas De Loof

PPTX

Docker and kubernetesDongwon Kim

PPTX

Docker Ecosystem on AzurePatrick Chanezon

PPTX

Drupal Continuous Integration with Jenkins - The BasicsJohn Smith

PDF

Rhel7 vs rhel6Arunvignesh Venkatesh

PDF

淺談探索 Linux 系統設計之道 National Cheng Kung University

Containers what are they, and why are they important v2.1Derrick Wippler

Container & kubernetesTed Jung

0x02 - Windows Privilege Esc - A Low Level Explanation of Token TheftRussell Sanford

0x002 - Windows Priv Esc - A Low Level Explanation of Token TheftRussell Sanford

Weave User Group Talk - DockerCon 2017 RecapPatrick Chanezon

DockerCon 16 General Session Day 1Docker, Inc.

Core OSvyhliluk

Dev Environments: The Next GenerationTravis Thieman

Containers and Nutanix - Acropolis Container ServicesNEXTtour

ResinioAndreaLisanti1

Containerize! Between Docker and Jube.Henryk Konsek

To Build My Own Cloud with Blackjack…Sergey Dzyuban

The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, OrchestrationErica Windisch

A Survey of Container Security in 2016: A Security Update on Container PlatformsSalman Baset

Dockers zero to heroNicolas De Loof

Docker and kubernetesDongwon Kim

Docker Ecosystem on AzurePatrick Chanezon

Drupal Continuous Integration with Jenkins - The BasicsJohn Smith

Rhel7 vs rhel6Arunvignesh Venkatesh

淺談探索 Linux 系統設計之道 National Cheng Kung University

Recently uploaded (20)

PDF

Advances in Ultra High Voltage (UHV) Transmission and Distribution Systems.pdfNabajyoti Banik

PDF

Revolutionize Operations with Intelligent IoT Monitoring and ControlRejig Digital

PDF

This slide provides an overview Technologymineshkharadi333

PPTX

Smart Infrastructure and Automation through IoT SensorsRejig Digital

PPT

L2 Rules of Netiquette in Empowerment technologyArchibal2

PPTX

New ThousandEyes Product Innovations: Cisco Live June 2025ThousandEyes

PDF

The Evolution of KM Roles (Presented at Knowledge Summit Dublin 2025)Enterprise Knowledge

PDF

Cloud-Migration-Best-Practices-A-Practical-Guide-to-AWS-Azure-and-Google-Clou...Artjoker Software Development Company

PDF

Software Development Methodologies in 2025KodekX

PDF

Structs to JSON: How Go Powers REST APIsEmily Achieng

PDF

CIFDAQ'S Market Insight: BTC to ETH money in motionCIFDAQ

PDF

Unlocking the Future- AI Agents Meet Oracle Database 23ai - AIOUG Yatra 2025.pdfSandesh Rao

PDF

Chapter 1 Introduction to CV and IP Lecture Note.pdfGetnet Tigabie Askale -(GM)

PPTX

Stamford - Community User Group Leaders_ Agentblazer Status, AI Sustainabilit...Amol Dixit

PDF

Tea4chat - another LLM Project by Kerem Atama0m0rajab1

PDF

AI Unleashed - Shaping the Future -Starting Today - AIOUG Yatra 2025 - For Co...Sandesh Rao

PDF

Automating ArcGIS Content Discovery with FME: A Real World Use CaseSafe Software

PDF

Using Anchore and DefectDojo to Stand Up Your DevSecOps FunctionAnchore

PDF

Software Development Company | KodekXKodekX

PPTX

OA presentation.pptx OA presentation.pptxpateldhruv002338

Advances in Ultra High Voltage (UHV) Transmission and Distribution Systems.pdfNabajyoti Banik

Revolutionize Operations with Intelligent IoT Monitoring and ControlRejig Digital

This slide provides an overview Technologymineshkharadi333

Smart Infrastructure and Automation through IoT SensorsRejig Digital

L2 Rules of Netiquette in Empowerment technologyArchibal2

New ThousandEyes Product Innovations: Cisco Live June 2025ThousandEyes

The Evolution of KM Roles (Presented at Knowledge Summit Dublin 2025)Enterprise Knowledge

Cloud-Migration-Best-Practices-A-Practical-Guide-to-AWS-Azure-and-Google-Clou...Artjoker Software Development Company

Software Development Methodologies in 2025KodekX

Structs to JSON: How Go Powers REST APIsEmily Achieng

CIFDAQ'S Market Insight: BTC to ETH money in motionCIFDAQ

Unlocking the Future- AI Agents Meet Oracle Database 23ai - AIOUG Yatra 2025.pdfSandesh Rao

Chapter 1 Introduction to CV and IP Lecture Note.pdfGetnet Tigabie Askale -(GM)

Stamford - Community User Group Leaders_ Agentblazer Status, AI Sustainabilit...Amol Dixit

Tea4chat - another LLM Project by Kerem Atama0m0rajab1

AI Unleashed - Shaping the Future -Starting Today - AIOUG Yatra 2025 - For Co...Sandesh Rao

Automating ArcGIS Content Discovery with FME: A Real World Use CaseSafe Software

Using Anchore and DefectDojo to Stand Up Your DevSecOps FunctionAnchore

Software Development Company | KodekXKodekX

OA presentation.pptx OA presentation.pptxpateldhruv002338

Containers - (Austin Cloud Meetup April 2016)

2. Derrick J. Wippler Blog: http://thrawn01.org Twitter: @thrawn01

4. Android Super NES Emulator http://www.superretro16.com/

5. Containers

7. What Containers Are NOT

8. DOCKER != CONTAINERS

10. Container Technology is provided by the Linux Kernel

11. NOT LXC

12. Linux Kernel Containers

13. Everything you need to create and run containers already exists in the linux kernel

14. Everything you need to create and run containers already exists in the linux kernel

15. However…….

21. CHROOT

23. CHROOT PROVIDES Isolate Process & File systems

24. CHROOT

25. CHROOT Kernel Namespaces CGroups

26. Namespaces

27. PID Namespaces NET Namespaces

28. PID Namespaces Provide Process Isolation

30. PID NameSpace 1

31. PID NameSpace 1 PID NameSpace 2 PID NameSpace 3 PID NameSpace 4

32. PID NameSpace 1 PID NameSpace 2 PID NameSpace 3 PID NameSpace 4 CHROOT ?

33. NET Namespaces

34. NET Namespaces Provide Network Isolation

35. Root NET Namespace NET Namespace 1 NET Namespace 2

36. Root NET Namespace NET Namespace 1 NET Namespace 2

37. Network your chroots together inside the kernel

38. Network your chroots together inside the kernel Sounds like - VM Hypervisor

39. Container is NOT a VM

40. Container is NOT a VM VM’s run entire OS

41. Container is NOT a VM VM’s run entire OS Containers run a single process

42. <demo>

53. Prepare for coolness

64. Remember, when you start a container, you are just starting a process with namespaces

71. Existing container workloads on VMs 1X DataCenters

74. Configuration Management

75. Infrastructure is in a known state. Prevent Infrastructure drift. Self Healing

76. Container Images treated as immutable No more Infrastructure Drift

77. Prevent Infrastructure drift Infrastructure is in a known state Self Healing

78. Clustering

79. What is Kubernetes Kubernetes is an open source orchestration system for Docker containers. It handles scheduling onto nodes in a compute cluster and actively manages workloads to ensure that their state matches the user's declared intentions.

80. Kubernetes Monitoring Builtin support for application level health checks (DB Checks, Socket & Http checks, etc…) Automatically restart crashed processes (aka containers) Natively React to Monitor Events

81. Prevent Infrastructure drift Infrastructure is in a known state Self Healing

83. MANAGED BY KUBERNETES Self healing No Infrastructure Drift Infrastructure is in a known state Reliability

84. Why do we need Configuration Management?

85. What about Operating System Configuration?

86. Immutable Operating Systems Immutable Infrastructure AKA

87. Brandon Phillips CTO Alex Polvi CEO

88. All you need is a OS that can run Containers

89. No Package Manager Immutable Config files

90. Why configure the OS? Our containers can contain all OS config files and daemons necessary for our application to run

91. How to configure all the disparate containers?

92. Consistent Distributed Key Store

94. Why do we need Configuration Management?

95. Brian Redbeard Principal Architect CoreOS

96. “If we do our job correctly, future releases of CoreOS will NOT have SSH server installed”

97. “If we do our job correctly, future releases of CoreOS will NOT have SSH server installed”

98. How you would design your infrastructure/software if you were unable to SSH into the host OS?

100. Typical Operating System Kernel Configuration Storage Workloads

101. Typical Operating System Kernel Configuration Storage Linux Kernel /etc FileSystems EXT4 Workloads Processes

102. Typical Operating System Kernel Configuration Storage Linux Kernel /etc FileSystems EXT4 Kubernetes etcd ISCSI Block or FSAS Workloads Processes Containers

103. Cloud Operating System

104. Infinite CPU Power Distributed Scale Self Healing Always Available

105. GIFEE

106. GIFEE Google Infrastructure For Everyone Else

107. All I WANT create my application in a container make it scale I don’t want it to go down

108. Blog: http://thrawn01.org Twitter: @thrawn01