Overview of microservice architecture day38 docker container technology
The siege lion chova 2021-06-25 13:22:04

Docker Brief introduction of container technology

LXC(LinuX Container)

namespaces

  • Host level virtualization
  • Container level virtualization :
    • User space The isolation :
      • Host domain name - UTS
      • file system - Mount
      • Process call - IPC
      • Process tree - PID
      • User group - User
      • Network communication - Network
  • User space is isolated through the kernel level namespace mechanism namespaces Realization
namespace System call parameters Isolate content
UTS CLONE_NEWUTS Host name and domain name
Mount CLONE_NEWNS Mount point , File system
IPC CLONE_NEWIPC Semaphore , Message queuing and shared memory
PID CLONE_NEWPID Process number
User CLONE_NEWUSER Users and user groups
Network CLONE_NEWNET Network devices , Network stack , port

cgroups

  • cgroups: Control Groups, Control group . Divide system level resources into groups , Then the amount of resources in each group is allocated to a specific user space
    • blkio: Block device IO
    • cpu: CPU
    • cpuacct: CPU Resource usage report
    • cpuset: On multiprocessor platforms CPU aggregate
    • devices: Device access
    • freezer: Suspend or resume tasks
    • memory: Memory usage and reporting
    • perf_event: Yes cgroup In the task of unified performance testing
    • net_cls: cgroup The class identifier of the datagram created by the task in
Docker
  • Layered construction , Joint mount
  • A container is like a process , With life cycle
  • Persistent data is not stored in a container , Create... Separately , Mount by container
kubernetes(k8s)
  • Docker Container arrangement technology
Please bring the original link to reprint ,thank
Similar articles

2021-06-05

2021-06-05

2021-06-06

2021-06-09

2021-06-09

2021-06-09

2021-06-09

2021-06-10

2021-06-11

2021-06-15