LINFO2145 Cloud Computing Quiz - Containers

Questions and Answers

What is one of the primary learning objectives of the lecture?

To explore machine learning algorithms

To understand the principles of OS-level virtualization and containers (correct)

To analyze financial models of cloud computing

To create a personal cloud server

Which technology is primarily addressed for building and deploying containers?

OpenStack

Docker (correct)

VirtualBox

Kubernetes

What will students receive for participating in the individual work?

A guaranteed passing grade

Extra credit points

A designated mentor

A certificate grade for participation (correct)

In the context of cloud computing, which of the following is NOT mentioned as a topic in the course outline?

Network security protocols

What is one of the grading components mentioned for the quiz?

Indicative grade of 0 to 60 points, plus a fixed 20 for each review

Which aspect of containers is introduced in the lecture objectives?

Networking and container management frameworks

What framework is associated with the composition and management of containers?

Container orchestration frameworks

What is the ultimate goal of the students' reviews in the quiz process?

To provide peer feedback on answers given

What is a key advantage of using containers over traditional virtual machines?

Less overheads

What does the term 'OS-level virtualization' refer to?

Containers running on modified kernel calls

Which of the following statements about containers is NOT true?

Containers eliminate the need for an operating system.

What was one of the significant contributions of Rivière to container technology?

Combining virtual machines and containers for management efficiency

In what year was the first release of Rivière's container technology?

2014

What aspect of virtualization do containers lack compared to virtual machines?

Isolation of applications

Which of the following describes a limitation of using containers?

They may allow resource sharing that isn't fully isolated.

Which feature enhances the efficiency of containers according to their design?

Kernel integration for context switching

What is the primary purpose of Docker networking?

To connect containers as separate network interfaces

Which command creates a new Docker network?

docker network create [name]

What tool is NOT mentioned for managing sets of containers?

OpenShift

What does orchestration in container management primarily involve?

Managing resources and scheduling for multiple containers

Which of the following correctly describes composition in the context of Docker?

Grouping several containers together as a single entity

Which tool is specifically mentioned for service discovery?

Consul

What aspect makes managing individual containers complex?

The manual wiring of containers together

Which of the following accurately describes Docker Swarm?

A method for orchestrating and scheduling containers across hosts

What is the primary purpose of process isolation in Docker containers?

To ensure each container runs in its own user-space environment

What command is used to run an interactive shell in a Docker container using the Ubuntu image?

docker run -i -t ubuntu /bin/bash

In Docker, what does resource isolation and grouping via cgroups help to manage?

The CPU and memory allocation for each container

What is the significance of copy-on-write filesystems in Docker?

They enable efficient storage by sharing layers across multiple containers

What does the -i option do in the docker run command?

It keeps STDIN open from the container

Which of the following accurately describes network isolation in Docker containers?

Containers have unique virtual interfaces and IP addressing

What effect does the -t option have when launching a Docker container?

It creates a TTY to permit user interaction with the shell

What is one of the key features of Docker containers concerning file systems?

Each container has its own root file system and is isolated

What is the purpose of a docker-compose YAML file?

To describe a set of containers and their runtime properties

How are ports configured in a docker-compose setup?

Ports are instantiated using the 'ports' directive in the YAML file

What command is used to start the containers defined in a docker-compose file?

docker-compose up

What information does the 'links' directive in a docker-compose YAML file provide?

It sets up automatic networking and service discovery between containers

What happens when 'docker-compose up' is executed?

Both containers are executed as defined in the YAML file

Which command would you use to stop running containers defined in docker-compose?

docker-compose stop

When specifying volumes in docker-compose, what does the ':' symbol indicate?

The path on the host machine to be mounted in the container

What is the significance of the prefix added to the output when running 'docker-compose up'?

It identifies the unique namespace for each running container

What is a significant benefit of OS-level virtualization in the context of cloud computing?

It simplifies managing and deploying large-scale resources.

How are containers and Virtual Machines characterized in relation to each other?

They are complementary technologies that can coexist.

Which statement correctly describes the current state of container management software?

It is fast-evolving and not yet commercially settled.

What trend does the DevOps movement influence in the technology landscape?

Growing interest in virtualization technologies.

Which companies are mentioned as prominent users of container technology?

Docker, Google, and Core OS.

What is noted about the adoption of container technologies among non-IT companies?

Adoption is still developing for these companies.

What aspect of the container ecosystem is highlighted in the conclusions?

It is characterized by rapid changes and innovations.

In what way is container management described in comparison to Virtual Machines?

Container management remains less mature than its Virtual Machine counterpart.

Study Notes

Cloud Computing - OS-level virtualization and containers

• Course: LINFO2145

• Lecturer: Pr. Etienne Rivière

• Topic: OS-level virtualization and containers

• Objectives:

  • Understand the history and principles of OS-level virtualization and containers.
  • Detail how to build and deploy containers using Docker.
  • Introduce composition, networking and container management frameworks for Cloud environments.

• Outline:

  • Introduction
  • History of OS-level virtualization
  • Linux containers
  • Containers vs. Virtual Machines
  • Docker containers and usage examples
  • Containers composition, discovery, orchestration and management
  • A few words on DevOps

• Announcement:

  • First quiz on lectures 1 and 2 available on Moodle after the lecture.
  • One week to provide answers (before lecture +1 on Wednesday @10:45).
  • One week to review answers (before lecture +2 on Wednesday @10:45).
  • Grading guidelines provided.
  • Only students submitting answers will be invited to grade.
  • Indicative grade of 0-60 points +20 (fixed) for each review.
  • Certificate granted for participation with sufficient effort in responses/reviews.

• A Thousand-Mile Perspective:

  • Independent management of containerized applications.
  • Decouple OS and application deployment and management.
  • Shift from machine-oriented to application-oriented datacenters.
  • Container management systems (Swarm, Kubernetes).
  • Similar role to OpenStack but for containers, with additional support for service-oriented architectures.

• Containers: a definition

  • A single OS, single kernel, single device drivers and single file system.
  • Support for multiple user-space instances over a single kernel-space instance.
  • Enabling mechanism: Isolation
  • No visibility or access across user-space instances, no sharing of process identifiers, file handlers, shared memory, or file system (unless explicit), or I/O devices or networking.
  • Processes in one user-space instance believe they have an exclusive operating system.
  • Enabling policy: resource management (e.g., memory, network, disk quotas).

• Containers: some history

  • Relies on UNIX/Linux kernel features (added before cloud computing).
  • Added for isolation of processes in debugging, testing, and safety.
  • Windows are adapting similar mechanisms more recently due to their use in cloud computing environments.
  • Key milestones: UNIX chroot, FreeBSD jails, Linux cgroups, namespaces.

• chroot

  • UNIX kernel system call since the late 1970s.
  • Chroot wrapper program for filesystems isolation.
  • Changes apparent root directory for running processes and children.
  • Used for testing (unit, dependency, regression, compatibility).
  • Example: build farms for Ubuntu/Debian.
  • No security isolation.

• FreeBSD jails

  • First example of securely isolated containers.
  • Similar to chroot but with root privilege isolation.
  • Splits FreeBSD OS into independent mini-systems called jails.
  • Undistinguishable from root environment.
  • Support for nested virtualization.
  • One application: honeypot for intruders.

• Namespaces and control groups (cgroups)

  • Namespaces: Grouping system resources (mount control points, process and user identifiers, network interfaces, inter-process communication, etc.).
  • Dynamically creates or joins namespace instances, allowing separation at resource type level.
  • Cgroups: Resource accounting and limitation between processes (memory usage, file system cache, prioritization).

• Linux containers

  • Generic name for containers based on namespaces and cgroups.
  • Active open-source projects: OpenVZ (2005), LXC (2008), Linux-VServer (2013), Open Container Initiative runC (2013), Rocket by CoreOS (2014).
  • Generally complex to use, configure, and automate.

• Docker

  • Wraps up complete applications inside containers, supporting runC and other container technologies.
  • File system containing everything needed (runtime, system tools, system libraries).
  • Solves the portability problem of earlier container implementations assuming the same OS distribution.
  • Open-sourced by dotCloud PaaS (2013), 1.0 release in June 2014.
  • Huge success and interest.
  • Full functional toolset for creating and managing portable containers.
  • Docker containers: features (process, network, resource isolation, file system, copy-on-write).
  • Running a first container (commands).

• Docker Hub

  • Registry for storing Docker images.
  • Public Docker Hub operated by Docker,Inc.
  • Possible to add your own (company) registry .
  • Top-level repositories (e.g., docker pull ubuntu:latest).
  • User repositories (e.g., docker pull username/ubuntu:latest).
  • Searching for images (e.g., docker search puppet).

• Creating images

  • Typically built from existing base images(e.g., ubuntu:latest).
  • Requires Dockerfile and docker build.
  • Publishing to Docker Hub is possible with a free account.

• Creating a simple web server

  • Steps to create a web server image.
  • Using Dockerfile and commands.
  • Exposing a port for access.

• Docker commands (e.g., build, run, ps, stop, attach, inspect).

• Daemonized containers (containers running in the background, with no interactive shell).

• Docker networking

  • Connecting containers (e.g., web app and database).
  • Abstracts host networking (e.g., db, logs).
  • Configuration done outside of the containers.

• Composing and orchestrating containers

  • Managing individual containers by hand is complex.
  • Composition (grouping containers).
  • Tools: docker-compose, Consul, Docker Swarm, Kubernetes.

• Docker-compose

  • Describes a set of containers and their properties in a YAML file.
  • Lists containers, commands, ports or volumes as needed.
  • How containers are linked.

• Consul

  • Distributed application with many services requiring discovery.
  • Containers register their services with Consul (service name and contact information).
  • Consul monitors service liveness (availability).
  • Catalog of available services, accessible via DNS-like and HTTP-based REST APIs.

• Docker Swarm

  • Manages multiple Docker hosts as a single virtual host.
  • Exposes the regular Docker API across a cluster of hosts.
  • Integrated with the regular Docker client and worker nodes.

• Docker and the DevOps Movement

  • Traditional separation of roles (dev and ops).
  • Agile development, release.
  • Need for consistency of deployments and stability.
  • DevOps bridges the gap by integrating release/test/deployment processes.
  • Treats configuration as code and manage VMs and applications.
  • Well-suited for micro-services approach.

• Kubernetes

  • Google used Linux containers.
  • Large number of hosts, needs for advanced features.
  • Dynamic configs, service discovery, auto-scaling, and quota management.
  • Three generations of systems: Borg, Omega, and Kubernetes.
  • Open source (since 2014).
  • Tightly integrated with Docker; now also used by companies such as Core OS, Red Hat.

• Conclusions

  • OS-level virtualization gained interest for large-scale resource management in the cloud.
  • Companies built software for simpler, easier automation of container use.
  • Containers and VMs are complementary, not opposing technologies.
  • Container ecosystem continues evolving quickly as a commercially well settled alternative to VMs.
  • Used by tech companies, including Google, and DevOps movement.

Description

Test your knowledge on OS-level virtualization and containers in this quiz for the LINFO2145 course. Covering the principles of OS-level virtualization, Docker usage, and container management frameworks, this quiz is designed to reinforce your understanding of key concepts covered in lectures 1 and 2.