Login | Register FREE! | English | Korean | About Us
  Home | Reports | Technical Documents | Tech-Blog | One-Shot Gallery | Korea ICT News | Korea Communication Market Data | List of Contributors | Become a Contributor |    
 
 
Section 5G 4G LTE C-RAN/Fronthaul Gigabit Internet IPTV/Video Streaming IoT SDN/NFV Wi-Fi KT SK Telecom LG U+ Network Protocol Samsung   Korean Vendors
 
Real World Private 5G Cases   4 Deployment Models On-Premise Cases 5G Core Control Plane Sharing Cases

5G Core Sharing Cases

    
 
Private 5G Deployment   • Private 5G Frequency Allocation Status in Korea  South Korean government's regulations on private 5G and KT's strategy for entering the market
Cases in Korea   Private 5G Operators |   SK Networks Service (SI) Sejong Telecom (Wire-line Carrier) KT MOS (Affiliate of KT) • Newgens (SI) • NAVER Cloud more >>  
    Enterprise DIY |   Korea Hydro & Nuclear Power (Power Plant) Korea Electric Power Corporation (Energy) • Republic of Korea Navy more >>
 
CHANNELS     HFR Private 5G Solution (my5G)       my5G Solution Components       my5G Key Features        my5G Resources        my5G News          
 
banner
banner
Automation of railway safety prevention and maintenance based on cameras + private 5G + AI
NETMANIAS
TECH-BLOG
List
Docker Internals
April 12, 2018 | By Nikhil Vyakaranam & Dilip Krishna S
Online viewer:
HTML
Comments (0)
8

We are pleased to share with you all an interesting article contributed by Nikhil Vyakaranam and Dilip Krishna S.

 
 

Nikhil Vyakaranam

Technical Marketing Engineer at Cisco Systems

 

 

All Articles by Nikhil Vyakaranam

  
     
  How to contribute your article to Netmanias.com !  
     
  List of Contributors  

 

 

 

Dilip Krishna S

Technical Marketing Engineer at Cisco Systems

 

 

All Articles by Dilip Krishna S

  
     
  How to contribute your article to Netmanias.com !  
     
  List of Contributors  

 
 
     
 
We discussed Containers in the previous post, how they are different and the advantages it has over Virtual Machines. In this post, we will see how containers became a reality and how Docker became an inevitable name in the world of containers.
 
Image Courtesy : Redhat
 
Linux Cgroups
 
Containers operate in isolation. This isolation is aided by few kernel features one of them being Linux Cgroups. This feature allows you to group a set of process which can run as a related unit. This group of processes can be controlled in terms of how much  memory, CPU utilization, I/O both disk and network it can use. Cgroups give fine grained control over allocation, monitoring and managing of system resources. Hardware resources can be divided among tasks and users increasing efficiency.
 
Linux Namespaces
 
Another kernel feature which allows a restricted view of the system. When you login into a Linux machine, you will see it’s file systems, processes, network interfaces. Once you create a container, you will enter into a namespace which will render a restricted view and the container will have its own file systems, processes and network interfaces different from the host machine its running on. There are multiple namespaces that are used by containers and primarily Docker and each process is in one namespace of each type.
  • Pid - (Process isolation) Processes within a PID namespace only see processes in the same PID namespace. Each PID namespace has its own numbering and starts with 1. When the PID 1 goes away, the whole namespace is killed. In the below example, an ubuntu container is spun up with an interactive bash terminal. The process table of this container has PID 1 which is the command /bin/bash. To summarise it, the container lifecycle is tied to the PID 1 in the container process table and when the PID 1 is killed, the container stops. 
  • Net - (Network isolation) Processes within the network namespace get their own network stack. This includes network interfaces, routing tables, iptables and sockets.
 
  • Mnt - ( Filesystem mount points isolation)  Processes can have their own root filesystem and this will be different from the host filesystem. 
  • UTS - (Nodename and Domainname isolation) This is to set the different hostname for each container. When you login to one of the containers and type uname -a, it will be different form the other

  • IPC - (Inter Process Communication resource isolation) - To put it in simple terms, if two containers are trying to access something common, it could be a shared memory, message queues and there occurs a conflict as they are trying to access the same name or construct. This namespace will allow the containers to use the same constructs. It could have a private, shareable or even utilise the host system’s namespace. Below is an example of shared IPC namespace.
  • User - User name space will allow you to be a privileged user with in the container when you are a non privileged user outside of it. You might be UID 1000 outside but UID 0 (root) inside. You will see a different user table on host and containers
 
Docker Images
 
Linux Containers (LXC) came in around 10 years back, but then how did Docker become the talking point in the world of containers ?  The key differentiator was the Docker image. Never before could you actually encapsulate an application, it’s dependencies and configuration files into a lightweight portable bundle. This along with the Docker Engine API triggered the adoption of containers at a large scale. 
 
A Docker image will comprise of multiple layers. You will see this when you do a “docker pull <image>” where it pulls different layers of the image from the registry. Each layer of the image is a image on its own and any changes made to the image will be saved as layers on top of the base image layer creating a nesting relationship as shown below. The base image is read-only and the top layers are read-write. 
 
 
Docker Image is a not a filesystem or a virtual hard disk. It is more like a tar file with some additional metadata. If you want to copy a docker image from one host to another, you can save the docker image as a tar file and import it to the other host. Its is as simple as that.
 
Docker Host
 
Docker Host hosts the docker daemon which interacts with Docker images and Containers. It also hosts the Docker Images and Containers themselves. It publishes an API which other programs like orchestrators can contact images and containers. All the command line that we use to work with docker is handled by a docker client called Docker CLI which contacts the docker daemon running on the docker host.
 
Image Courtesy : Docker
 
Docker Registry
 
Docker Registry store docker images. The official docker registry is called the Docker Hub. It has a lot of official images published by docker and also has private images published by individuals which you can make use off. If you have worked with git, docker registry uses similar semantics. It allows you to push, pull and commit and also follows a hierarchical structure.  
 
As an individual, once you create an account on the docker hub you can do a  push or pull of images. You can also create a private registry on your host and use that to store images.
 
Docker Networking
 
Each Docker container has its own network stack and the NET namespace that we discussed above helps in achieving this. By default docker creates three networks as shown below out of which docker bridge (appears as docker0 on host) is the default networking type unless explicitly specified. 
 
 
 

For more articles by Nikhil Vyakaranam and Dilip Krishna S on Technically Speaking, please see: https://cloudifynetwork.com

  
 
Thank you for visiting Netmanias! Please leave your comment if you have a question or suggestion.
Related Contents
Six Years Of NFV - Why So Pessimistic?!
12/01/2018
Netmanias Blog
Next Generation Mobile Networks Evolution with Convergence, Cloud and SDN
04/27/2018
Netmanias Blog
Containers – A Primer
03/28/2018
Netmanias Blog
NFV/SDN Platform or Application Driven? Set Right Focus to reach the final Goal
03/26/2018
Netmanias Blog
Understanding NFV - NFV FAQ
11/30/2017
Netmanias Blog
SDN/NFV: Strategies and Progresses in Network Operators
04/18/2017
Netmanias Reports
Operator Predictions for 2017
02/22/2017
Netmanias Blog
An NFV and SDN Reader
02/07/2017
Netmanias Blog
Difference between SDN and NFV? Which one is better?
12/12/2016
Netmanias Blog
Metrics on Selecting the Right SDN Solution
10/10/2016
Netmanias Blog
 
 
 
 

[HFR Private 5G: my5G]

 

Details >>

 

 

 

     
         
     

 

      
     

Subscribe FREE >>

Currently, 55,000+ subscribed to Netmanias.

  • You can get Netmanias Newsletter

  • You can view all netmanias' contents

  • You can download all netmanias'

    contents in pdf file

      
     

 

      
         
     

 

 

 

View All (858)
4.5G (1) 5G (102) AI (8) AR (1) ARP (3) AT&T (1) Akamai (1) Authentication (5) BSS (1) Big Data (2) Billing (1) Blockchain (3) C-RAN/Fronthaul (18) CDN (4) CPRI (4) Carrier Ethernet (3) Charging (1) China (1) China Mobile (2) Cisco (1) Cloud (5) CoMP (6) Connected Car (4) DHCP (5) EDGE (1) Edge Computing (1) Ericsson (2) FTTH (6) GSLB (1) GiGAtopia (2) Gigabit Internet (19) Google (7) Google Global Cache (3) HLS (5) HSDPA (2) HTTP Adaptive Streaming (5) Handover (1) Huawei (1) IEEE 802.1 (1) IP Routing (7) IPTV (21) IoST (3) IoT (56) KT (43) Korea (20) Korea ICT Market (1) Korea ICT Service (13) Korea ICT Vendor (1) LG U+ (18) LSC (1) LTE (78) LTE-A (16) LTE-B (1) LTE-H (2) LTE-M (3) LTE-U (4) LoRa (7) MEC (4) MPLS (2) MPTCP (3) MWC 2015 (8) NB-IoT (6) Netflix (2) Network Protocol (21) Network Slice (1) Network Slicing (4) New Radio (9) Nokia (1) OSPF (2) OTT (3) PCRF (1) Platform (2) Private 5G (11) QoS (3) RCS (4) Railway (1) Roaming (1) SD-WAN (17) SDN/NFV (71) SIM (1) SK Broadband (2) SK Telecom (35) Samsung (5) Security (16) Self-Driving (1) Small Cell (2) Spectrum Sharing (2) Switching (6) TAU (2) UHD (5) VR (2) Video Streaming (12) VoLTE (8) VoWiFi (2) Wi-Fi (31) YouTube (6) blockchain (1) eICIC (1) eMBMS (1) iBeacon (1) security (1) telecoin (1) uCPE (2)
 
       
 

 

Register    |    About Us    |   Sponsor Channel Service (Korean Market)    |   Advertise    |   Contact Us     |     LinkedIn    |     Our Korean Site

 
 

 

HQ: 201, Hanho Building 33, Nonhyeon-ro 64-gil, Gangnam-gu, Seoul, 06228, Rep. of KOREA  

Netmanias USA: 5214 36th Ave. NE Seattle, WA 98105 USA

 

Netmanias was founded in year 2002, and provides in-depth analysis and overview of 4G & 5G mobile,

IoT, SDN/NFV, Gigabit Internet and video streaming technologies as well as trends in the evolution

of Korean operators’ networks and services

Copyright ⓒ 2002-2023 NMC Consulting Group. All rights reserved.
       

 

Continue to download
Close
Password confirmation
Please enter your registered comment password.
Password
Ok
Cancel