Containers (Still Confusion!??) Chillax !! Unsharing is caring...

-

Its all about Cgroups and Namespaces:

Lets check it out!!!


Cgroups:

cgroups (abbreviated from control groups) is a Linux kernel feature that limits, accounts for, and isolates the resource usage (CPU, memory, disk I/O, network, etc.) of a collection of processes.

Inshort grouping processes and imposing limits 

Namespaces:
 - Linux kernel primitives,fundamental aspects of containers

 Inshort providing isolation to controlled group of processes
  • pid (process id)
  • mnt(rootfs)
  • net(network Stack)
  • user(usermapping)
  • uts(hostname)
  • ipc(processes inside container share all) 

Note:  /proc/$pid/ns is a procfs dir which stores informations about namespaces

References
            https://linuxcontainers.org/lxc/introduction/

Popular posts from this blog

What Happens Under the Hood of SSH Connections? Analyzing SSH Packets with Wireshark.

-
Image
Prerequisites Before we dive into packet analysis, make sure you have the following set up: Two Endpoints (VMs or Containers) Wireshark tcpdump It’s also important to have a basic understanding of: TCP SSH Linux Introduction In this blog post, I'll guide you through the step-by-step process of analyzing SSH connection packets using Wireshark. Whether you're troubleshooting SSH issues or simply curious about how SSH works at the protocol level, this tutorial is for you. We'll cover both successful and failed SSH connections, examining the packet flow and explaining what’s happening in the background. I've already set up a working environment for this use case. Let’s dive right into packet capture and analysis, and uncover what happens during an SSH connection. Fig. 1: A list of servers with roles and IP addresses for quick network reference. Breaking Down Packet Capture and Analysis: A Step-by-Step Guide In this post, we'll break down the process of packet capture...
Read more

Certification for Kubernetes? I got it covered.

-
Image
Working in such a rapidly growing software industry, there are new software and certifications which are announced almost every day. And for every new certification announced, you would think that doing it would be cool or help you in your career. Similarly, I saw some of the certification announcements, which included AWS, Azure, Jenkins, Docker, and Kubernetes certification. My initial thought was that I should do each & every one of them, but time passed by and here I am, with just one and only certification "CKA". This made me realize and question myself if completing a certification is necessary. Decision : Here is my take on it. Holding a certification won’t get you on top of the world, and not holding one will not make you fall. That being said, I enrolled to complete CKA, and here are a few points which made it easier for me to decide. 1. Cost : For some, this may not be the most important, but I still consider if its worth spending 200/300$ for it...
Read more

Continuous Integrations Concepts and Demo

-
Image
Continuous Integration  (CI) is a development practice where developers commit  code into a shared repository frequently, preferably several times a day. Each commit  then gets verified by an integrated & automated build and similarly with integrated & automated tests. While automated tests aren't strictly part of CI but typically implied. The posted video includes two demos with relative examples and CI concepts. Demo 1:    Python Flask API, Test Cases, Azure DevOps Intro, Docker Multi Stage Builds & CI with GitHub Demo 2:    Python Django MVT Application, Jenkins pipeline , Docker Hub , Terraform, GitHub
Read more