docker devops shared registries hpc and emerging use cases
play

Docker : devops, shared registries, HPC and emerging use cases - PowerPoint PPT Presentation

Apr 15, 2023 •217 likes •418 views

Docker : devops, shared registries, HPC and emerging use cases Franois Moreews & Olivier Sallou P r e s e n t a t i o n Docker is an open-source engine to easily create lightweight, portable , self-sufficient containers from

  1. Docker : devops, shared registries, HPC and emerging use cases François Moreews & Olivier Sallou

  2. P r e s e n t a t i o n “ Docker is an open-source engine to easily create lightweight, portable , self-sufficient containers from any application. The same container that a developer builds and test on a laptop can run at scale , in production , on Vms,[...], public clouds and more.”

  3. P r e s e n t a t i o n chroot ● Each process/command on Linux has current working directory called root directory of a process/command. Chroot changes the root directory of a command, which ends up changing the root directory for both current running process and its children. ● A process/command that is run in such a modified environment cannot access files outside the root directory . This modified environment is known as " jailed directory " .

  4. P r e s e n t a t i o n What are Docker “containers” ? Technically: ~chroot on steroids ● a container is a set of processes (running on top of common kernel) ● isolated* from the rest of the machine (cannot see/affect/harm host or other containers) ● using namespaces to have private view of the system (network interfaces, PID tree, mountpoints...) ● and cgroups to have metered/limited/reserved resources (to mitigate “bad neighbor” effect)

  5. P r e s e n t a t i o n What are Docker “containers” ? From a distance: looks like a VM ● I can SSH into my container ● I can have root access in it ● I can install packages in it ● I have my own eth0 interface ● I can tweak routing table, iptables rules ● I can mount filesystems ...

  6. P r e s e n t a t i o n What are Docker “containers” ? ● boot in milliseconds ● just a few MB of intrinsic disk/memory usage ● bare metal performance is possible Lightweight, fast, disposable...virtual environments : An efficient new way to build, ship, deploy & run your apps !

  7. Wh y i t w o r k s — s e p a r a t i o n o f c o n c e r n s • t h e O p s ( a d mi n ) w o r r i e s a b o u t • t h e D e v e l o p e r w o r r i e s w h a t ’ s “ o u t s i d e ” t h e c o n t a i n e r a b o u t w h a t ’ s “ i n s i d e ” t h e • L o g g i n g c o n t a i n e r • R e mo t e a c c e s s • H i s c o d e • M o n i t o r i n g • H i s L i b r a r i e s • N e t w o r k c o n f i g • H i s P a c k a g e • A l l c o n t a i n e r s s t a r t , s t o p , M a n a g e r c o p y , a t t a c h , mi g r a t e , e t c . • H i s A p p s t h e s a me w a y • H i s D a t a • A l l L i n u x s e r v e r s l o o k t h e s a me

  8. P r e s e n t a t i o n ● LinuX Containers (LXC) ● Control Groups & Namespaces ● AUFS ● Client – Server with an HTTP API

  9. Build : Dependencies & Dockerfjle more api/Dockerfile FROM giltarchitecture/ ubuntu-openjdk-7-jre-headless:12.0.4 ADD . /apidoc ENTRYPOINT ["/apidoc/bin/apidoc-api"]

  10. Run Docker docker -run --expose 80 -p 9000:80 mydockercontainer-1-2-3 –Denv.port=90 -Denv.conffile=file.conf deamon mode (-d) or interactif mode (-i)

  11. DOCKER : Share Docker Registries

  12. S h a r e d r e g i s t r i e s : y o u r s

  13. S h a r e d r e g i s t r i e s : y o u r s

  14. DOCKER : CLOUD & HPC Google Container Engine A Container based cloud architecture

  15. G o o g l e C o n t a i n e r E n g i n e ● A l p h a ● t h e G o o g l e C o n t a i n e r E n g i n e i s i n s p i r e d b y G o o g l e ’ s e x p e r i e n c e w i t h b u i l d i n g a n d r u n n i n g c o n t a i n e r - b a s e d d i s t r i b u t e d s y s t e ms , C o n t a i n e r E n g i n e r e - i ma g i n e s s o me o f G o o g l e ’ s mo s t p o w e r f u l i n t e r n a l s y s t e ms , s o t h a t y o u c a n d e v e l o p a n d ma n a g e c o n t a i n e r s t h e w a y G o o g l e ’ s e n g i n e e r s d o . ● Wi t h c o n t a i n e r - b a s e d c o mp u t i n g , a p p l i c a t i o n d e v e l o p e r s c a n f o c u s o n t h e i r a p p l i c a t i o n c o d e , i n s t e a d o f o n d e p l o y me n t s a n d i n t e g r a t i o n i n t o h o s t i n g e n v i r o n me n t s . A t t h e s a me t i me , a p p l i c a t i o n s c a n b e b u i l t w i t h f e w c o n s t r a i n t s . O p e r a t i o n s c a n p r o v i d e a r o b u s t p l a t f o r m t h a t q u i c k l y p r o v i s i o n s c o mp u t e r e s o u r c e s a n d e a s i l y ma n a g e s a p p l i c a t i o n s . T h e t o o l s n e e d t o s u p p o r t t h e r i g h t c o n t r o l s f o r s u c h a p p l i c a t i o n a n d r e s o u r c e ma n a g e me n t . ● T h e f o c u s w i t h C o n t a i n e r E n g i n e i s o n b u i l d i n g t h e s e t o o l s a n d c o n t r o l s f o r o p e r a t i o n s . A t t h e s a me t i me , g o o g l e w a n t t o a l l o w f o r w o r k l o a d mo b i l i t y , w h e r e c o n t a i n e r i z e d a p p l i c a t i o n s c a n r u n mu l t i - c l o u d . T h e y h a v e , t h e r e f o r e , d e s i g n e d C o n t a i n e r E n g i n e t o s u p p o r t K u b e r n e t e s , t h e o p e n s o u r c e t e c h n o l o g y , s o t h a t c u s t o me r s c a n r u n o n mu l t i p l e c l o u d s .

  16. DOCKER : CLOUD & HPC Google Kubernetes A Container based cloud architecture

  17. G o o g l e K u b e r n e t e s ● K u b e r n e t e s i s a n o p e n s o u r c e c o n t a i n e r c l u s t e r ma n a g e r . I t s c h e d u l e s a n y n u mb e r o f c o n t a i n e r r e p l i c a s a c r o s s a g r o u p o f n o d e i n s t a n c e s . A ma s t e r i n s t a n c e e x p o s e s t h e K u b e r n e t e s A P I , t h r o u g h w h i c h t a s k s a r e d e f i n e d . K u b e r n e t e s s p a w n s c o n t a i n e r s o n n o d e s t o h a n d l e t h e d e f i n e d t a s k s . ● T h e n u mb e r a n d t y p e o f c o n t a i n e r s c a n b e d y n a mi c a l l y mo d i f i e d a c c o r d i n g t o n e e d . A n a g e n t ( a k u b e l e t ) o n e a c h n o d e i n s t a n c e mo n i t o r s c o n t a i n e r s a n d r e s t a r t s t h e m i f n e c e s s a r y . ● K u b e r n e t e s i s o p t i mi z e d f o r G o o g l e C l o u d P l a t f o r m, b u t c a n r u n o n a n y p h y s i c a l o r v i r t u a l ma c h i n e .

  18. DOCKER : CLOUD & HPC GO Docker Batch Scheduler with Docker

  19. Job/Interactive context If user request root access: ● mount job directory in container ● mount /softs, /db as read-only ● execute command ● chown job directory with user id after command completion If user does not request root access: ● mount ~user in container ● mount job directory in container ● mount /home/user ● mount additional user requested directories if user has read access (uid/gid) ● mount /softs, /db as read-only ● execute command as user (same uid/gid)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer

Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer

Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer Devops / Golang artist The Docker ecosystem Docker Engine : run containerized processes (aka: containers) Docker Compose : run multi-container

381 views • 13 slides
Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat

Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat

Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat Various Roles in IT since 1995 Programmer $ whoami Analyst @bexelbie Manager (Ops, Dev, Special Projects) Slides URL:

850 views • 48 slides
Add picture Swarm here Bret Fisher DevOps Consultant Docker Captain, Dell {code} Catalyst

Add picture Swarm here Bret Fisher DevOps Consultant Docker Captain, Dell {code} Catalyst

Going Production with Docker and Add picture Swarm here Bret Fisher DevOps Consultant Docker Captain, Dell {code} Catalyst Author of Udemy's Docker Mastery Slides! bretfisher.com/slides Add picture here Tweets!

769 views • 63 slides
DupHunter : Flexible High-Performance Deduplication for Docker Registries Nannan Zhao , Hadeel

DupHunter : Flexible High-Performance Deduplication for Docker Registries Nannan Zhao , Hadeel

DupHunter : Flexible High-Performance Deduplication for Docker Registries Nannan Zhao , Hadeel Albahar, Subil Abraham, Keren Chen, Vasily Tarasov, Dimitrios Skourtis, Lukas Rupprecht, Ali Anwar, and Ali R. Butt Containers are ubiquitous OS

1.61k views • 76 slides
Going D/S/K Prod Like A Pro BRET FISHER Docker Captain, DevOps Dude, Creator of Docker Mastery

Going D/S/K Prod Like A Pro BRET FISHER Docker Captain, DevOps Dude, Creator of Docker Mastery

Going D/S/K Prod Like A Pro BRET FISHER Docker Captain, DevOps Dude, Creator of Docker Mastery bretfisher.com/docker @bretfisher Going D/S/K Prod Like A Pro BRET FISHER Docker Captain, DevOps Dude, Creator of Docker Mastery

1.51k views • 127 slides
June 28, 2010 Hankje Escher USA registries European registries Longterm registry

June 28, 2010 Hankje Escher USA registries European registries Longterm registry

June 28, 2010 Hankje Escher USA registries European registries Longterm registry (Centocor) Pediatric IBD consortium (Heyman) Start 2000: prevalent and incident cases, 1600 patients 6 sites: San Francisco,

439 views • 17 slides
A Continuation of Devops Policy as Code March 2019 Gareth Rushgrove @garethr Docker This talk

A Continuation of Devops Policy as Code March 2019 Gareth Rushgrove @garethr Docker This talk

A Continuation of Devops Policy as Code March 2019 Gareth Rushgrove @garethr Docker This talk What to expect - A little history Infrastructure, APIs and devops - Parallels with security Security as policy management - Security tool

837 views • 60 slides
Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes Enthusiast Speaker at Meetups Email: apurvbhandari@gmail.com LinkedIn: https://www.linkedin.com/in/apurvabhandari-linux GitHub:

2.16k views • 28 slides
Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y install docker s ystemctl start docker systemctl enable docker docker images - Launch pre-canned container: hello-world (busybox is another good

480 views • 4 slides
docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer / mgoelzer@docker.com / @mgoelzer Docker Inc. docker service is the new docker run docker run nginx 2013-14 docker run -p 3375:2375 swarm ; 2014-15

688 views • 34 slides
containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy

containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy

containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy French DevOps - Go away or I will replace you with a very small shell script Runs everything in containers - Docker-in-Docker - VPN-in-Docker -

1.06k views • 61 slides
Demystifying Docker JUG Saxony Day 2015 Bernd Fischer Whos that guy? Passionate Java

Demystifying Docker JUG Saxony Day 2015 Bernd Fischer Whos that guy? Passionate Java

Demystifying Docker JUG Saxony Day 2015 Bernd Fischer Whos that guy? Passionate Java Developer (especially Spring) Agile and Devops infected Docker enthusiast berndfischer63@gmail.com @berndfischer63 JUG Saxony, Docker Meetup Dresden

521 views • 41 slides
Building a DevOps PaaS with Docker, CoreOS, Kubernetes and Apache Stratos Last Updated: August.

Building a DevOps PaaS with Docker, CoreOS, Kubernetes and Apache Stratos Last Updated: August.

Building a DevOps PaaS with Docker, CoreOS, Kubernetes and Apache Stratos Last Updated: August. 2014 About Me Lakmal Warusawithana Vise President, Apache Stratos Director - Cloud Architecture, WSO2 Inc lakmal@apache.org / lakmal@wso2.com *

381 views • 24 slides
Building a DevOps PaaS with Git, Docker, OpenStack and Apache Stratos Last Updated: August. 2014

Building a DevOps PaaS with Git, Docker, OpenStack and Apache Stratos Last Updated: August. 2014

Building a DevOps PaaS with Git, Docker, OpenStack and Apache Stratos Last Updated: August. 2014 About Me Lakmal Warusawithana Vise President, Apache Stratos Director - Cloud Architecture, WSO2 Inc lakmal@apache.org / lakmal@wso2.com *

617 views • 25 slides
INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both provide isolated environments Docker is much more efficient 64-bit Linux only (currently) CONTAINERIZATION A Docker container is a portable store for a

674 views • 29 slides
Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use

Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use

Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use Cases Single-host networking with the Bridge driver Multi-host networking with the Overlay driver Connecting to existing VLANs with the

1.32k views • 93 slides
Introduction to Linux Francisco Salavert Torres February 29th, 2016 1 What is GNU/Linux?

Introduction to Linux Francisco Salavert Torres February 29th, 2016 1 What is GNU/Linux?

Introduction to Linux Francisco Salavert Torres February 29th, 2016 1 What is GNU/Linux? GNU/Linux to simplify Linux, is a free Operating System (OS). By Operating System, we mean the suite of programs and libraries which

662 views • 27 slides
OpenStack Charms Project Update, OpenStack Summit Vancouver James Page (jamespage) What are the

OpenStack Charms Project Update, OpenStack Summit Vancouver James Page (jamespage) What are the

May 2018 OpenStack Charms Project Update, OpenStack Summit Vancouver James Page (jamespage) What are the OpenStack Charms? commit 4b30ccbd044be76be66c1bb6f9669dba352147b6 Author: Adam Gandelman <adamg@canonical.com> Date: Tue Jul 5

403 views • 19 slides
msroot@microsoft.com https://docs.microsoft.com/en-us/ https://aka.ms/RootCert

msroot@microsoft.com https://docs.microsoft.com/en-us/ https://aka.ms/RootCert

msroot@microsoft.com https://docs.microsoft.com/en-us/ https://aka.ms/RootCert https://aka.ms/auditreqs Removal of root from the Certificate Trust List (CTL). All certificates no longer trusted Introduced in Windows10RS1. Disables all

381 views • 6 slides
Hubble Catalog of variables - Presentation @Napoli Observatory Presentation October 2016

Hubble Catalog of variables - Presentation @Napoli Observatory Presentation October 2016

See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/309634589 Hubble Catalog of variables - Presentation @Napoli Observatory Presentation October 2016 CITATIONS READS 0 17 1 author:

698 views • 54 slides
Family-joining: A method for constructing generally labeled trees Prabhav Kalaghatgi Max Planck

Family-joining: A method for constructing generally labeled trees Prabhav Kalaghatgi Max Planck

Family-joining: A method for constructing generally labeled trees Prabhav Kalaghatgi Max Planck Institute for Informatics Saarbrcken AREVIR, Cologne, April 29 2016 A phylogenetic tree is a model of evolutionary relationship Chang et al. Mol

674 views • 32 slides
* Jino KWON Korea Forest Research Institute Korea Forest Service 1 * Overview Overview

* Jino KWON Korea Forest Research Institute Korea Forest Service 1 * Overview Overview

* Jino KWON Korea Forest Research Institute Korea Forest Service 1 * Overview Overview Overview Overview Overview Formulating Restoration Plan Restoration Practices Follow-up Management Restoration Cases 2 17 th JULY,

758 views • 38 slides
PhyloGeoTool Exploring large-scale phylogenies in an epidemiological context Ewout Vanden Eynden

PhyloGeoTool Exploring large-scale phylogenies in an epidemiological context Ewout Vanden Eynden

PhyloGeoTool Exploring large-scale phylogenies in an epidemiological context Ewout Vanden Eynden Clinical and Evolutionary Virology, Rega. Arevir Meeting April 29 th , 2016 Background Large-scale databases of clinical and demographical

250 views • 23 slides
Improving the Rectification of Spectral Images Linda Dressel, Paul Barrett, Paul Goudfrooij, and

Improving the Rectification of Spectral Images Linda Dressel, Paul Barrett, Paul Goudfrooij, and

Improving the Rectification of Spectral Images Linda Dressel, Paul Barrett, Paul Goudfrooij, and Phil Hodge Overview Accurate spectral traces are especially needed for analysis of single rows in spectral images. Artifacts are produced

440 views • 21 slides

More recommend