docker devops shared registries hpc and emerging use cases
play

Docker : devops, shared registries, HPC and emerging use cases - PowerPoint PPT Presentation

Apr 15, 2023 •217 likes •418 views

Docker : devops, shared registries, HPC and emerging use cases Franois Moreews & Olivier Sallou P r e s e n t a t i o n Docker is an open-source engine to easily create lightweight, portable , self-sufficient containers from

  1. Docker : devops, shared registries, HPC and emerging use cases François Moreews & Olivier Sallou

  2. P r e s e n t a t i o n “ Docker is an open-source engine to easily create lightweight, portable , self-sufficient containers from any application. The same container that a developer builds and test on a laptop can run at scale , in production , on Vms,[...], public clouds and more.”

  3. P r e s e n t a t i o n chroot ● Each process/command on Linux has current working directory called root directory of a process/command. Chroot changes the root directory of a command, which ends up changing the root directory for both current running process and its children. ● A process/command that is run in such a modified environment cannot access files outside the root directory . This modified environment is known as " jailed directory " .

  4. P r e s e n t a t i o n What are Docker “containers” ? Technically: ~chroot on steroids ● a container is a set of processes (running on top of common kernel) ● isolated* from the rest of the machine (cannot see/affect/harm host or other containers) ● using namespaces to have private view of the system (network interfaces, PID tree, mountpoints...) ● and cgroups to have metered/limited/reserved resources (to mitigate “bad neighbor” effect)

  5. P r e s e n t a t i o n What are Docker “containers” ? From a distance: looks like a VM ● I can SSH into my container ● I can have root access in it ● I can install packages in it ● I have my own eth0 interface ● I can tweak routing table, iptables rules ● I can mount filesystems ...

  6. P r e s e n t a t i o n What are Docker “containers” ? ● boot in milliseconds ● just a few MB of intrinsic disk/memory usage ● bare metal performance is possible Lightweight, fast, disposable...virtual environments : An efficient new way to build, ship, deploy & run your apps !

  7. Wh y i t w o r k s — s e p a r a t i o n o f c o n c e r n s • t h e O p s ( a d mi n ) w o r r i e s a b o u t • t h e D e v e l o p e r w o r r i e s w h a t ’ s “ o u t s i d e ” t h e c o n t a i n e r a b o u t w h a t ’ s “ i n s i d e ” t h e • L o g g i n g c o n t a i n e r • R e mo t e a c c e s s • H i s c o d e • M o n i t o r i n g • H i s L i b r a r i e s • N e t w o r k c o n f i g • H i s P a c k a g e • A l l c o n t a i n e r s s t a r t , s t o p , M a n a g e r c o p y , a t t a c h , mi g r a t e , e t c . • H i s A p p s t h e s a me w a y • H i s D a t a • A l l L i n u x s e r v e r s l o o k t h e s a me

  8. P r e s e n t a t i o n ● LinuX Containers (LXC) ● Control Groups & Namespaces ● AUFS ● Client – Server with an HTTP API

  9. Build : Dependencies & Dockerfjle more api/Dockerfile FROM giltarchitecture/ ubuntu-openjdk-7-jre-headless:12.0.4 ADD . /apidoc ENTRYPOINT ["/apidoc/bin/apidoc-api"]

  10. Run Docker docker -run --expose 80 -p 9000:80 mydockercontainer-1-2-3 –Denv.port=90 -Denv.conffile=file.conf deamon mode (-d) or interactif mode (-i)

  11. DOCKER : Share Docker Registries

  12. S h a r e d r e g i s t r i e s : y o u r s

  13. S h a r e d r e g i s t r i e s : y o u r s

  14. DOCKER : CLOUD & HPC Google Container Engine A Container based cloud architecture

  15. G o o g l e C o n t a i n e r E n g i n e ● A l p h a ● t h e G o o g l e C o n t a i n e r E n g i n e i s i n s p i r e d b y G o o g l e ’ s e x p e r i e n c e w i t h b u i l d i n g a n d r u n n i n g c o n t a i n e r - b a s e d d i s t r i b u t e d s y s t e ms , C o n t a i n e r E n g i n e r e - i ma g i n e s s o me o f G o o g l e ’ s mo s t p o w e r f u l i n t e r n a l s y s t e ms , s o t h a t y o u c a n d e v e l o p a n d ma n a g e c o n t a i n e r s t h e w a y G o o g l e ’ s e n g i n e e r s d o . ● Wi t h c o n t a i n e r - b a s e d c o mp u t i n g , a p p l i c a t i o n d e v e l o p e r s c a n f o c u s o n t h e i r a p p l i c a t i o n c o d e , i n s t e a d o f o n d e p l o y me n t s a n d i n t e g r a t i o n i n t o h o s t i n g e n v i r o n me n t s . A t t h e s a me t i me , a p p l i c a t i o n s c a n b e b u i l t w i t h f e w c o n s t r a i n t s . O p e r a t i o n s c a n p r o v i d e a r o b u s t p l a t f o r m t h a t q u i c k l y p r o v i s i o n s c o mp u t e r e s o u r c e s a n d e a s i l y ma n a g e s a p p l i c a t i o n s . T h e t o o l s n e e d t o s u p p o r t t h e r i g h t c o n t r o l s f o r s u c h a p p l i c a t i o n a n d r e s o u r c e ma n a g e me n t . ● T h e f o c u s w i t h C o n t a i n e r E n g i n e i s o n b u i l d i n g t h e s e t o o l s a n d c o n t r o l s f o r o p e r a t i o n s . A t t h e s a me t i me , g o o g l e w a n t t o a l l o w f o r w o r k l o a d mo b i l i t y , w h e r e c o n t a i n e r i z e d a p p l i c a t i o n s c a n r u n mu l t i - c l o u d . T h e y h a v e , t h e r e f o r e , d e s i g n e d C o n t a i n e r E n g i n e t o s u p p o r t K u b e r n e t e s , t h e o p e n s o u r c e t e c h n o l o g y , s o t h a t c u s t o me r s c a n r u n o n mu l t i p l e c l o u d s .

  16. DOCKER : CLOUD & HPC Google Kubernetes A Container based cloud architecture

  17. G o o g l e K u b e r n e t e s ● K u b e r n e t e s i s a n o p e n s o u r c e c o n t a i n e r c l u s t e r ma n a g e r . I t s c h e d u l e s a n y n u mb e r o f c o n t a i n e r r e p l i c a s a c r o s s a g r o u p o f n o d e i n s t a n c e s . A ma s t e r i n s t a n c e e x p o s e s t h e K u b e r n e t e s A P I , t h r o u g h w h i c h t a s k s a r e d e f i n e d . K u b e r n e t e s s p a w n s c o n t a i n e r s o n n o d e s t o h a n d l e t h e d e f i n e d t a s k s . ● T h e n u mb e r a n d t y p e o f c o n t a i n e r s c a n b e d y n a mi c a l l y mo d i f i e d a c c o r d i n g t o n e e d . A n a g e n t ( a k u b e l e t ) o n e a c h n o d e i n s t a n c e mo n i t o r s c o n t a i n e r s a n d r e s t a r t s t h e m i f n e c e s s a r y . ● K u b e r n e t e s i s o p t i mi z e d f o r G o o g l e C l o u d P l a t f o r m, b u t c a n r u n o n a n y p h y s i c a l o r v i r t u a l ma c h i n e .

  18. DOCKER : CLOUD & HPC GO Docker Batch Scheduler with Docker

  19. Job/Interactive context If user request root access: ● mount job directory in container ● mount /softs, /db as read-only ● execute command ● chown job directory with user id after command completion If user does not request root access: ● mount ~user in container ● mount job directory in container ● mount /home/user ● mount additional user requested directories if user has read access (uid/gid) ● mount /softs, /db as read-only ● execute command as user (same uid/gid)

Recommend

Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer

Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer

Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer Devops / Golang artist The Docker ecosystem Docker Engine : run containerized processes (aka: containers) Docker Compose : run multi-container

381 views • 13 slides
Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat

Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat

Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat Various Roles in IT since 1995 Programmer $ whoami Analyst @bexelbie Manager (Ops, Dev, Special Projects) Slides URL:

850 views • 48 slides
Add picture Swarm here Bret Fisher DevOps Consultant Docker Captain, Dell {code} Catalyst

Add picture Swarm here Bret Fisher DevOps Consultant Docker Captain, Dell {code} Catalyst

Going Production with Docker and Add picture Swarm here Bret Fisher DevOps Consultant Docker Captain, Dell {code} Catalyst Author of Udemy's Docker Mastery Slides! bretfisher.com/slides Add picture here Tweets!

769 views • 63 slides
DupHunter : Flexible High-Performance Deduplication for Docker Registries Nannan Zhao , Hadeel

DupHunter : Flexible High-Performance Deduplication for Docker Registries Nannan Zhao , Hadeel

DupHunter : Flexible High-Performance Deduplication for Docker Registries Nannan Zhao , Hadeel Albahar, Subil Abraham, Keren Chen, Vasily Tarasov, Dimitrios Skourtis, Lukas Rupprecht, Ali Anwar, and Ali R. Butt Containers are ubiquitous OS

1.61k views • 76 slides
Going D/S/K Prod Like A Pro BRET FISHER Docker Captain, DevOps Dude, Creator of Docker Mastery

Going D/S/K Prod Like A Pro BRET FISHER Docker Captain, DevOps Dude, Creator of Docker Mastery

Going D/S/K Prod Like A Pro BRET FISHER Docker Captain, DevOps Dude, Creator of Docker Mastery bretfisher.com/docker @bretfisher Going D/S/K Prod Like A Pro BRET FISHER Docker Captain, DevOps Dude, Creator of Docker Mastery

1.51k views • 127 slides
June 28, 2010 Hankje Escher USA registries European registries Longterm registry

June 28, 2010 Hankje Escher USA registries European registries Longterm registry

June 28, 2010 Hankje Escher USA registries European registries Longterm registry (Centocor) Pediatric IBD consortium (Heyman) Start 2000: prevalent and incident cases, 1600 patients 6 sites: San Francisco,

439 views • 17 slides
A Continuation of Devops Policy as Code March 2019 Gareth Rushgrove @garethr Docker This talk

A Continuation of Devops Policy as Code March 2019 Gareth Rushgrove @garethr Docker This talk

A Continuation of Devops Policy as Code March 2019 Gareth Rushgrove @garethr Docker This talk What to expect - A little history Infrastructure, APIs and devops - Parallels with security Security as policy management - Security tool

837 views • 60 slides
Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes

Kubernetes Networking and Istio Apurva Bhandari $whoami SRE / DevOps Docker & Kubernetes Enthusiast Speaker at Meetups Email: apurvbhandari@gmail.com LinkedIn: https://www.linkedin.com/in/apurvabhandari-linux GitHub:

2.17k views • 28 slides
Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y install docker s ystemctl start docker systemctl enable docker docker images - Launch pre-canned container: hello-world (busybox is another good

480 views • 4 slides
docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer / mgoelzer@docker.com / @mgoelzer Docker Inc. docker service is the new docker run docker run nginx 2013-14 docker run -p 3375:2375 swarm ; 2014-15

688 views • 34 slides
containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy

containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy

containerization: more than the new virtualization Jrme Petazzoni (@jpetazzo) Grumpy French DevOps - Go away or I will replace you with a very small shell script Runs everything in containers - Docker-in-Docker - VPN-in-Docker -

1.06k views • 61 slides
Demystifying Docker JUG Saxony Day 2015 Bernd Fischer Whos that guy? Passionate Java

Demystifying Docker JUG Saxony Day 2015 Bernd Fischer Whos that guy? Passionate Java

Demystifying Docker JUG Saxony Day 2015 Bernd Fischer Whos that guy? Passionate Java Developer (especially Spring) Agile and Devops infected Docker enthusiast berndfischer63@gmail.com @berndfischer63 JUG Saxony, Docker Meetup Dresden

521 views • 41 slides
Building a DevOps PaaS with Docker, CoreOS, Kubernetes and Apache Stratos Last Updated: August.

Building a DevOps PaaS with Docker, CoreOS, Kubernetes and Apache Stratos Last Updated: August.

Building a DevOps PaaS with Docker, CoreOS, Kubernetes and Apache Stratos Last Updated: August. 2014 About Me Lakmal Warusawithana Vise President, Apache Stratos Director - Cloud Architecture, WSO2 Inc lakmal@apache.org / lakmal@wso2.com *

381 views • 24 slides
Building a DevOps PaaS with Git, Docker, OpenStack and Apache Stratos Last Updated: August. 2014

Building a DevOps PaaS with Git, Docker, OpenStack and Apache Stratos Last Updated: August. 2014

Building a DevOps PaaS with Git, Docker, OpenStack and Apache Stratos Last Updated: August. 2014 About Me Lakmal Warusawithana Vise President, Apache Stratos Director - Cloud Architecture, WSO2 Inc lakmal@apache.org / lakmal@wso2.com *

617 views • 25 slides
INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both provide isolated environments Docker is much more efficient 64-bit Linux only (currently) CONTAINERIZATION A Docker container is a portable store for a

674 views • 29 slides
Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use

Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use

Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use Cases Single-host networking with the Bridge driver Multi-host networking with the Overlay driver Connecting to existing VLANs with the

1.32k views • 93 slides
Docker Provider The Docker provider is used to interact with Docker containers and images. It uses

Docker Provider The Docker provider is used to interact with Docker containers and images. It uses

Docker Provider The Docker provider is used to interact with Docker containers and images. It uses the Docker API to manage the lifecycle of Docker containers. Because the Docker provider uses the Docker API, it is immediately compatible not only

553 views • 34 slides
WORKSHOP LPI DEVOPS TOOLS 15:35h a 16:40h Integracin y despliegue continuo mediante

WORKSHOP LPI DEVOPS TOOLS 15:35h a 16:40h Integracin y despliegue continuo mediante

WORKSHOP LPI DEVOPS TOOLS 15:35h a 16:40h Integracin y despliegue continuo mediante contenedores Docker sobre Kubernetes, Openshift y Jenkins Ponente: Sergio Rodrguez de Guzmn, CTO at PUE LPI Certification Programs Changes in the last

902 views • 73 slides
Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing

Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing

Eric Holm Skyler Manzanares Yuxin (Kelly) Wang http://gerardable.com/wp-content/uploads/2014/12/docker-whale-home-logo.png Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing this Whale! Free,

997 views • 28 slides
Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me Software engineer at Docker Maintainer on SwarmKit and Docker Engine open source projects Focusing on distributed state, task scheduling,

1.29k views • 62 slides
Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner Data Science Consultant accantec group | Alstertor 17 | 20095 Hamburg | Tel.: +49 (40) 67 59 59 0 | Fax.: +49 (40) 67 59 59 29 | www.accantec.de |

664 views • 29 slides
The future of registries Jay Daley Dec 2006 1 The future of registries Only the start of the

The future of registries Jay Daley Dec 2006 1 The future of registries Only the start of the

The future of registries Jay Daley Dec 2006 1 The future of registries Only the start of the journey Change is coming New technologies all the time Always a registry opportunity Some will embrace this Some will be left

344 views • 23 slides
- GitLab

- GitLab

- GitLab CI/CD Docker DevOps- What we have NGINX + Tomcat (Java) + MySQL + Redis + SOLR

1.55k views • 71 slides
Lessons Learned Containerizing GlusterFS and Ceph with Docker and Kubernetes Huamin Chen

Lessons Learned Containerizing GlusterFS and Ceph with Docker and Kubernetes Huamin Chen

Lessons Learned Containerizing GlusterFS and Ceph with Docker and Kubernetes Huamin Chen @root_fs github: rootfs Emerging Technologies Red Hat Outline Background Containerizing Ceph and Gluster Working with Docker

505 views • 18 slides

More recommend