virtualization with docker
play

Virtualization with Docker Matthias Schnepf Karlsruhe Institute of - PowerPoint PPT Presentation

Nov 26, 2022 •1.08k likes •1.26k views

Virtualization with Docker Matthias Schnepf Karlsruhe Institute of Technology (KIT), SCC/ETP 0 2019-11-05 Cake meeting Matthias Schnepf SCC/ETP Virtualization with Docker www.kit.edu KIT The Research University in the Helmholtz

  1. Virtualization with Docker Matthias Schnepf Karlsruhe Institute of Technology (KIT), SCC/ETP 0 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker www.kit.edu KIT – The Research University in the Helmholtz Association

  2. Virtualization “Virtualization uses software to create an abstraction layer over computer hardware that allows the hardware elements of a single computer-processors, memory, storage and more-to be divided into multiple virtual computers, commonly called virtual machines (VMs).“ 1 enable easy and flexible deployment of a software environment isolate processes / users / services most used ones: hardware virtualization OS-level virtualization / containerization 1 https://www.ibm.com/cloud/learn/virtualization-a-complete-guide, accessed 2019-10-28 1 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  3. Hardware Virtualization hypervisor process runs virtualized computer (VM) on the VM a complete operating system runs 2 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  4. Containerization a container is a isolated process isolation via namespaces “A namespace wraps a global system resource in an abstraction that makes it appear to the processes within the namespace that they have their own isolated instance of the global resource. Changes to the global resource are visible to other processes that are members of the namespace, but are invisible to other processes.“ 2 shares resources with host system 2 http://man7.org/linux/man-pages/man7/namespaces.7.html 3 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  5. VM vs. Container VM + complete encapsulated environment + user has all permissions inside a VM - resource overhead Container + flexible isolation of process + negligible resource overhead + short start time - reduced possibilities 4 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  6. Container Applications test programs in a controlled environment ( e.g. continues integration 3 ) services on a large scale (e.g. google 4 ) providing various software environments on the same infrastructure provide homogenous software environment on heterogenous infrastructure 3 https://docs.travis-ci.com/user/reference/overview/, accessed 2019-10-28 4 https://cloud.google.com/containers/?hl=en, accessed 2019-10-28 5 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  7. Container Software Docker (widely used and easy to use, https://www.docker.com) Singularity (designed for HPC clusters, https://sylabs.io/docs/) Podman (developed and pushed by RedHat, https://podman.io/) LXC (one of the first container software, https://linuxcontainers.org/) Shifter (https://iopscience.iop.org/article/10.1088/1742-6596/898/8/08202) rkt (https://coreos.com/rkt/) 6 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  8. Docker widely used in industry community edition is free over 100.000 container images 5 provides several features process namespace user namespace mount namespace network namespace nested container . . . requires docker daemon run as root 6 5 https://hub.docker.com/ 6 https://www.analyticsvidhya.com/blog/2017/11/reproducible-data-science-docker-for-data-science/ 7 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  9. Docker Hub https://hub.docker.com/ online docker container image repository public images and one private image are free support automatic container built alternatives: gitlab can support docker repositories Amazon Elastic Container Registry Azure Container Registry JFrog Artifactory 8 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  10. Release the whale install docker community edition https://docs.docker.com/install/ start docker daemon systemctl start docker add your user to group docker usermod -aG docker your-user check images with docker images check container with docker ps -a start bash in container docker run -it centos /bin/bash 9 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  11. Process Namespace processes inside a container see only processes in the same container processes on the host system can see processes inside the container same process has different process ID inside and outside the container 10 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  12. User Namespace default user in docker container is root user ID inside and outside the container are identically per default limit access to docker only to trusted users 11 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  13. Mount Namespace docker uses overlay file systems for images and container file systems bind mounts make files and directory accessible inside a container 12 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  14. Mount Namespace docker uses overlay file systems for images and container file systems bind mounts make files and directory accessible inside a container 12 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  15. Build a Container build instruction defined in a dockerfile install apache on CentOS and copy a file into the image: FROM centos MAINTAINER Matthias Schnepf <matthias.schnepf@kit.edu> RUN yum -y install httpd.x86_64; yum clean all COPY index.html /var/www/html/index.html each command is a new layer in the image → remove tmp files in the command build with docker build -t [image name] [directory of the dockerfile] 13 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  16. Network Namespace network settings bridge (default) each container get an interface and a private IP address communication to host and other machines via a bridge interface (docker0) port-forwarding with -p [destination port at host]:[destination port at container] address conflict with KIT WLAN ⇒ add in /etc/docker/daemon.json { "bip": "10.0.0.1/24" } 14 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

  17. Further Information Cake docker docu on https://docs.docker.com/get-started/ https://training.play-with-docker.com/ 7 7 https://codefresh.io/docker-tutorial/everyday-hacks-docker/ 15 2019-11-05 Cake meeting – Matthias Schnepf SCC/ETP – Virtualization with Docker

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy

containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy

containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy French DevOps - Go away or I will replace you with a very small shell script Runs everything in containers - Docker-in-Docker - VPN-in-Docker -

1.06k views • 61 slides
Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y install docker s ystemctl start docker systemctl enable docker docker images - Launch pre-canned container: hello-world (busybox is another good

480 views • 4 slides
docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer / mgoelzer@docker.com / @mgoelzer Docker Inc. docker service is the new docker run docker run nginx 2013-14 docker run -p 3375:2375 swarm ; 2014-15

688 views • 34 slides
Container-based virtualization: Docker Corso di Sistemi Distribuiti e Cloud Computing A.A.

Container-based virtualization: Docker Corso di Sistemi Distribuiti e Cloud Computing A.A.

Universit degli Studi di Roma Tor Vergata Dipartimento di Ingegneria Civile e Ingegneria Informatica Container-based virtualization: Docker Corso di Sistemi Distribuiti e Cloud Computing A.A. 2018/19 Valeria Cardellini Case study:

979 views • 20 slides
Container-based virtualization: Docker Corso di Sistemi Distribuiti e Cloud Computing A.A.

Container-based virtualization: Docker Corso di Sistemi Distribuiti e Cloud Computing A.A.

Macroarea di Ingegneria Dipartimento di Ingegneria Civile e Ingegneria Informatica Container-based virtualization: Docker Corso di Sistemi Distribuiti e Cloud Computing A.A. 2019/20 Valeria Cardellini Laurea Magistrale in Ingegneria

437 views • 21 slides
Is Docker Infrastructure or Platform? &amp; Cloud Foundry intro A Lecture for InstallFest 2017

Is Docker Infrastructure or Platform? &amp; Cloud Foundry intro A Lecture for InstallFest 2017

Is Docker Infrastructure or Platform? &amp; Cloud Foundry intro A Lecture for InstallFest 2017 by Ing. Tom Vondra Cloud Architect at Outline Virtualization and IaaS PaaS Docker Problems with Docker Cloud Foundry

956 views • 62 slides
Virtualization Virtualization Memory virtualization Process feels like it has its own

Virtualization Virtualization Memory virtualization Process feels like it has its own

4/25/08 Virtualization Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view of disks connected to a machine External

441 views • 8 slides
The State Of Docker and Vagrant Tooling in Eclipse Jeff Johnston jjohnstn@redhat.com Roland

The State Of Docker and Vagrant Tooling in Eclipse Jeff Johnston jjohnstn@redhat.com Roland

The State Of Docker and Vagrant Tooling in Eclipse Jeff Johnston jjohnstn@redhat.com Roland Grunberg rgrunber@redhat.com What is Docker? Open-source project Light-weight virtualization sharing Linux kernel Deploy applications

556 views • 28 slides
14 Docker CS 2043: Unix Tools and Scripting, Spring 2019 [1] Matthew Milano February 22,

14 Docker CS 2043: Unix Tools and Scripting, Spring 2019 [1] Matthew Milano February 22,

14 Docker CS 2043: Unix Tools and Scripting, Spring 2019 [1] Matthew Milano February 22, 2019 Cornell University 1 Table of Contents 1. The wonderful world of virtualization 2. Docker! 2 The image above is a link. Click it. 3 CS2043:

206 views • 16 slides
INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both provide isolated environments Docker is much more efficient 64-bit Linux only (currently) CONTAINERIZATION A Docker container is a portable store for a

674 views • 29 slides
Docker Provider The Docker provider is used to interact with Docker containers and images. It uses

Docker Provider The Docker provider is used to interact with Docker containers and images. It uses

Docker Provider The Docker provider is used to interact with Docker containers and images. It uses the Docker API to manage the lifecycle of Docker containers. Because the Docker provider uses the Docker API, it is immediately compatible not only

553 views • 34 slides
Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/

Virtualization What is Virtualization? Virtualization is the simulation of the software and/ or hardware upon which other software runs. This simulated environment is called a virtual machine --Wikipedia 2 Computer Systems Arch.

1.26k views • 26 slides
Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing

Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing

Eric Holm Skyler Manzanares Yuxin (Kelly) Wang http://gerardable.com/wp-content/uploads/2014/12/docker-whale-home-logo.png Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing this Whale! Free,

997 views • 28 slides
Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me Software engineer at Docker Maintainer on SwarmKit and Docker Engine open source projects Focusing on distributed state, task scheduling,

1.29k views • 62 slides
Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner Data Science Consultant accantec group | Alstertor 17 | 20095 Hamburg | Tel.: +49 (40) 67 59 59 0 | Fax.: +49 (40) 67 59 59 29 | www.accantec.de |

664 views • 29 slides
Docker Review Basic Commands docker image ls # list images currently present locally docker

Docker Review Basic Commands docker image ls # list images currently present locally docker

Docker Review Basic Commands docker image ls # list images currently present locally docker container ls # list running containers docker run &lt;image_name&gt; # run an image as a container docker exec &lt;container&gt; &lt;command&gt; # run a

1.1k views • 6 slides
Prac6cal Lessons From Crea6ng the Control-Alt-Hack Card

Prac6cal Lessons From Crea6ng the Control-Alt-Hack Card

Prac6cal Lessons From Crea6ng the Control-Alt-Hack Card Game Research Challenges for Games In Educa6on and Research Tamara Tammy Denning

314 views • 27 slides
MOL2NET , 2017 , 3, doi:10.3390/mol2net-03-015339 2 The physical-chemical characterization of

MOL2NET , 2017 , 3, doi:10.3390/mol2net-03-015339 2 The physical-chemical characterization of

MOL2NET , 2017 , 3, doi:10.3390/mol2net-03-015339 1 MOL2NET, International Conference Series on Multidisciplinary Sciences MDPI http://sciforum.net/conference/mol2net-03 THERMOALKALINE PRETREATMENT INFLUENCE ON ANAEROBIC BIODEGRADABILITY OF

648 views • 7 slides
Scala in the JEE world How and why we have used Scala to implement portions of typical Java EE

Scala in the JEE world How and why we have used Scala to implement portions of typical Java EE

Scala in the JEE world How and why we have used Scala to implement portions of typical Java EE Experts at Cake Solutions They thought we wanted They thought we wanted Use Scala Use Scala Maven, baby We actually wanted We actually wanted We

922 views • 49 slides
Game Theory Extensive Form Games: Applications Levent Ko ckesen Ko c University Levent

Game Theory Extensive Form Games: Applications Levent Ko ckesen Ko c University Levent

page.1 Game Theory Extensive Form Games: Applications Levent Ko ckesen Ko c University Levent Ko ckesen (Ko c University) Extensive Form Games: Applications 1 / 23 page.2 A Simple Game You have 10 TL to share A makes an offer

384 views • 23 slides
6 Fluency Teaching Slides For or the ful ull slides inc nclud uding ng reasoni oning ng,

6 Fluency Teaching Slides For or the ful ull slides inc nclud uding ng reasoni oning ng,

Num umbe ber: r: Perc rcent ntages 6 Fluency Teaching Slides For or the ful ull slides inc nclud uding ng reasoni oning ng, pl please visit: www.masterthecur urricul ulum um.co. o.uk uk 6 Fluency Teaching Slides Fractions

921 views • 52 slides
Bufferbloat mitigation in the Linux WiFi stack status and ongoing work Toke

Bufferbloat mitigation in the Linux WiFi stack status and ongoing work Toke

Bufferbloat mitigation in the Linux WiFi stack status and ongoing work Toke Hiland-Jrgensen LLC 2019 Lund, Sweden, May 2019 1 Outline Background: Bufferbloat mitigation in Linux Fixing bloat in the WiFi stack Airtime

637 views • 29 slides
Representing Focus Scoping over New Mats Rooth Cornell University NELS 45 MIT Oct. 31 Nov.

Representing Focus Scoping over New Mats Rooth Cornell University NELS 45 MIT Oct. 31 Nov.

Locus/scope/antecedent Focus over new New grammar for focus Phonology Summary Representing Focus Scoping over New Mats Rooth Cornell University NELS 45 MIT Oct. 31 Nov. 2, 2014 Locus/scope/antecedent Focus over new New grammar for

537 views • 32 slides
Cake: : Enabling Hig igh-level SLOs on Shared Sto torage Syste tems Andrew Wang, Shivaram

Cake: : Enabling Hig igh-level SLOs on Shared Sto torage Syste tems Andrew Wang, Shivaram

Cake: : Enabling Hig igh-level SLOs on Shared Sto torage Syste tems Andrew Wang, Shivaram Venkataraman, Sara Alspaugh, Randy Katz, Ion Stoica University of California, Berkeley SO SOCC CC 20 2012 12 Content Introduction Problem

841 views • 30 slides

More recommend