SlideShare a Scribd company logo

Yusuf Haruna Docker internship slides

Y
Yusuf Haruna

Slides for my master final presentation at Polytech Nice Sophia/University of Nice Sophia Antipolis, France.

Engineering
1 of 20
Download to read offline
An Analysis and Empirical Study of Docker Networking Yusuf HARUNA University of Nice Sophia Antipolis/UCA, France 3 July 2019 Master II IFI - UBINET Internship Oral Defence Supervisors: Guillaume Urvoy-Keller & Dino Lopez-Pacheco, i3s Laboratory Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 1 / 20
Outline 1 Introduction 2 Three popular cloud Applications 3 Benchmarks 4 Container Networking modes 5 Experimental Results 6 RSS/RPS 7 Conclusion Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 2 / 20
Introduction Traditional Virtualization Vs Lightweight Virtualization Source: https://www.docker.com/ Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 3 / 20
Introduction Motivations High use of container-based virtualization in the cloud and search engines e.g google launches about 7,000 containers every second. Objectives Understand the performance of different Docker Networking solutions, Build a realistic testbed: select some applications + benchmarks, Obtain some results by testing our testbed and monitor system level performance, Check if we can reduce the overhead of the overlay Networks using OS/hardware support. Challenges Tune the testbed and do some tests with RSS/RPS Hardware dependency Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 4 / 20
Three popular cloud Applications + iperf3 An in-memory key-value store: Memcached, stress more memory + a bit of network A web server: Nginx, stress more network A Relational Database server: PostgreSQL, stress more network depending on the quarry + more I/O Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 5 / 20
Benchmarks iperf3: to test maximum achievable throughput on IP networks. ∗ TCP throughput ∗ UDP throughput memtier benchmark: to measure the performance of memcached. ∗ Spawns 4 threads ∗ Each thread creates 50 TCP connections ∗ Reports the average number of responses/second, the average latency to respond to a memcached command + SET/GET latency Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 6 / 20
Benchmarks wrk2: to measure the performance of nginx server. ∗ Spawns two threads ∗ Creates a total of 100 TCP connections to make a request to the server ∗ The throughput in requests/second can be set in the tool ∗ Outputs latency pgbench: to measure the performance of PostgreSQL server. ∗ Creates a database of one million banking accounts ∗ Executes transactions with a total of 100 connections with 4 threads ∗ Outputs latency Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 7 / 20
Container Networking modes Figure 1: Experimental setup Two ways to deploy containers: on VMs b/c of security (e.g cloud provider) or on a PM e.g google Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 8 / 20
Container Networking modes on multiple hosts Host mode: In this mode, containers share the namespace of the host OS. Source: https://www.onug.net/blog/ container-networking-easy-button-for-app-teams-heartburn-for-networking-and-security-teams/ Namespace is a way of logically separating processes along different dimensions; Network, IPC, User, PID, Mount or UTS namespace. Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 9 / 20
Container Networking modes NAT (Network Address Translation): ∗ Allows containers to communicate using the public IP address of their host machine + port number of the container ∗ Maps the private address of a container to its port number in a NAT table Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 10 / 20
Container Networking modes Docker default overlay Network: It uses Virtual Extensible LAN to connect containers on multiple hosts. Source: https://www.youtube.com/watch?v=Jqm_4TMmQz8 Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 11 / 20
Container Networking modes Weave: Is another implementation of overlay network, it uses a weave router container on each Docker host and the network is made from these connected weave routers. Source: https://sreeninet.wordpress.com/2015/01/18/docker-networking-weave/ Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 12 / 20
Experimental Results iperf3 throughput (a) TCP (b) UDP Figure 2: iperf3 TCP and UDP throughput Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 13 / 20
Experimental Results Memcached throughput and latency (a) Throughput (b) Latency Figure 3: memcached throughput and latency Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 14 / 20
Experimental Results Latency of Nginx server Figure 4: Nginx 1MB html file latency on 3K reqs/sec Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 15 / 20
Experimental Results PostgreSQL latency Figure 5: PostgreSQL latency on 500 trans/sec Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 16 / 20
Experimental Results (a) iperf3 (b) PostgreSQL Figure 6: CPU utilization of iperf3 and PostgreSQL servers Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 17 / 20
RSS/RPS - A Linux kernel support RSS: Receive Side Scaling ∗ A complementary technique in the Linux networking stack to increase parallelism and improve performance for multi-processor systems ∗ Contemporary NICs support multi-queue for receiving and forwarding packets ∗ Upon reception, a NIC can send different packets to different queues to distribute processing among CPUs ∗ RPS (Receive Packet Steering) is logically a software implementation of RSS Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 18 / 20
Conclusion Host mode has the best performance among all the 4 modes followed by NAT with few performance drop, while the two overlay networks (VXLAN and weave) have more performance drop because of the double encapsulation. The overlay networks consume more system resources. We would like to reduce the overhead of the overlay networks using OS/hardware kernel support. We started collecting some results but there are some questions on it, e.g. in memcached, the throughput improved but the latency increase a bit, hence, we would like to check why. The shell scripts of our testbed is open sourced at https://github.com/ Yusuf-Haruna/Analysis-of-Docker-Networking-Shell-scripts. Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 19 / 20
Thanks for your attention Yusuf Haruna yusuf.haruna@etu.univ-cotedazur.fr Questions? Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 20 / 20

Recommended

Cilium - API-aware Networking and Security for Containers based on BPF
Cilium - API-aware Networking and Security for Containers based on BPFCilium - API-aware Networking and Security for Containers based on BPF
Cilium - API-aware Networking and Security for Containers based on BPFThomas Graf
 
Kernel Recipes 2017 - EBPF and XDP - Eric Leblond
Kernel Recipes 2017 - EBPF and XDP - Eric LeblondKernel Recipes 2017 - EBPF and XDP - Eric Leblond
Kernel Recipes 2017 - EBPF and XDP - Eric LeblondAnne Nicolas
 
LinuxCon 2015 Stateful NAT with OVS
LinuxCon 2015 Stateful NAT with OVSLinuxCon 2015 Stateful NAT with OVS
LinuxCon 2015 Stateful NAT with OVSThomas Graf
 
Cilium - BPF & XDP for containers
Cilium - BPF & XDP for containers Cilium - BPF & XDP for containers
Cilium - BPF & XDP for containersDocker, Inc.
 
The Next Generation Firewall for Red Hat Enterprise Linux 7 RC
The Next Generation Firewall for Red Hat Enterprise Linux 7 RCThe Next Generation Firewall for Red Hat Enterprise Linux 7 RC
The Next Generation Firewall for Red Hat Enterprise Linux 7 RCThomas Graf
 
BPF & Cilium - Turning Linux into a Microservices-aware Operating System
BPF & Cilium - Turning Linux into a Microservices-aware Operating SystemBPF & Cilium - Turning Linux into a Microservices-aware Operating System
BPF & Cilium - Turning Linux into a Microservices-aware Operating SystemThomas Graf
 
LinuxCon 2015 Linux Kernel Networking Walkthrough
LinuxCon 2015 Linux Kernel Networking WalkthroughLinuxCon 2015 Linux Kernel Networking Walkthrough
LinuxCon 2015 Linux Kernel Networking WalkthroughThomas Graf
 
Ebpf ovsconf-2016
Ebpf ovsconf-2016Ebpf ovsconf-2016
Ebpf ovsconf-2016Cheng-Chun William Tu
 

Recommended

Cilium - API-aware Networking and Security for Containers based on BPF
Cilium - API-aware Networking and Security for Containers based on BPFCilium - API-aware Networking and Security for Containers based on BPF
Cilium - API-aware Networking and Security for Containers based on BPFThomas Graf
 
Kernel Recipes 2017 - EBPF and XDP - Eric Leblond
Kernel Recipes 2017 - EBPF and XDP - Eric LeblondKernel Recipes 2017 - EBPF and XDP - Eric Leblond
Kernel Recipes 2017 - EBPF and XDP - Eric LeblondAnne Nicolas
 
LinuxCon 2015 Stateful NAT with OVS
LinuxCon 2015 Stateful NAT with OVSLinuxCon 2015 Stateful NAT with OVS
LinuxCon 2015 Stateful NAT with OVSThomas Graf
 
Cilium - BPF & XDP for containers
Cilium - BPF & XDP for containers Cilium - BPF & XDP for containers
Cilium - BPF & XDP for containersDocker, Inc.
 
The Next Generation Firewall for Red Hat Enterprise Linux 7 RC
The Next Generation Firewall for Red Hat Enterprise Linux 7 RCThe Next Generation Firewall for Red Hat Enterprise Linux 7 RC
The Next Generation Firewall for Red Hat Enterprise Linux 7 RCThomas Graf
 
BPF & Cilium - Turning Linux into a Microservices-aware Operating System
BPF & Cilium - Turning Linux into a Microservices-aware Operating SystemBPF & Cilium - Turning Linux into a Microservices-aware Operating System
BPF & Cilium - Turning Linux into a Microservices-aware Operating SystemThomas Graf
 
LinuxCon 2015 Linux Kernel Networking Walkthrough
LinuxCon 2015 Linux Kernel Networking WalkthroughLinuxCon 2015 Linux Kernel Networking Walkthrough
LinuxCon 2015 Linux Kernel Networking WalkthroughThomas Graf
 
Ebpf ovsconf-2016
Ebpf ovsconf-2016Ebpf ovsconf-2016
Ebpf ovsconf-2016Cheng-Chun William Tu
 
BPF: Next Generation of Programmable Datapath
BPF: Next Generation of Programmable DatapathBPF: Next Generation of Programmable Datapath
BPF: Next Generation of Programmable DatapathThomas Graf
 
Kernel Recipes 2013 - Nftables, what motivations and what solutions
Kernel Recipes 2013 - Nftables, what motivations and what solutionsKernel Recipes 2013 - Nftables, what motivations and what solutions
Kernel Recipes 2013 - Nftables, what motivations and what solutionsAnne Nicolas
 
2015 FOSDEM - OVS Stateful Services
2015 FOSDEM - OVS Stateful Services2015 FOSDEM - OVS Stateful Services
2015 FOSDEM - OVS Stateful ServicesThomas Graf
 
Kernel Recipes 2014 - What’s new in nftables?
Kernel Recipes 2014 - What’s new in nftables?Kernel Recipes 2014 - What’s new in nftables?
Kernel Recipes 2014 - What’s new in nftables?Anne Nicolas
 
Socket programming
Socket programmingSocket programming
Socket programmingNemiRathore
 
Ns3
Ns3Ns3
Ns3Rehmat Ullah
 
Beyond TCP: The evolution of Internet transport protocols
Beyond TCP: The evolution of Internet transport protocolsBeyond TCP: The evolution of Internet transport protocols
Beyond TCP: The evolution of Internet transport protocolsOlivier Bonaventure
 
DevConf 2014 Kernel Networking Walkthrough
DevConf 2014 Kernel Networking WalkthroughDevConf 2014 Kernel Networking Walkthrough
DevConf 2014 Kernel Networking WalkthroughThomas Graf
 
Open vSwitch - Stateful Connection Tracking & Stateful NAT
Open vSwitch - Stateful Connection Tracking & Stateful NATOpen vSwitch - Stateful Connection Tracking & Stateful NAT
Open vSwitch - Stateful Connection Tracking & Stateful NATThomas Graf
 
ns-3 Tutorial
ns-3 Tutorialns-3 Tutorial
ns-3 Tutorialmathieu_lacage
 
Ground to ns3 - Basic wireless topology implementation
Ground to ns3 - Basic wireless topology implementationGround to ns3 - Basic wireless topology implementation
Ground to ns3 - Basic wireless topology implementationJawad Khan
 
Building Topology in NS3
Building Topology in NS3Building Topology in NS3
Building Topology in NS3Rahul Hada
 
Introduction to ns3
Introduction to ns3Introduction to ns3
Introduction to ns3Shahid Beheshti University
 
Tutorial ns 3-tutorial-slides
Tutorial ns 3-tutorial-slidesTutorial ns 3-tutorial-slides
Tutorial ns 3-tutorial-slidesVinayagam D
 
introduction to linux kernel tcp/ip ptocotol stack
introduction to linux kernel tcp/ip ptocotol stack introduction to linux kernel tcp/ip ptocotol stack
introduction to linux kernel tcp/ip ptocotol stack monad bobo
 
Polyraptor
PolyraptorPolyraptor
PolyraptorMohammedAlasmar2
 
Compiling P4 to XDP, IOVISOR Summit 2017
Compiling P4 to XDP, IOVISOR Summit 2017Compiling P4 to XDP, IOVISOR Summit 2017
Compiling P4 to XDP, IOVISOR Summit 2017Cheng-Chun William Tu
 
Ns2pre
Ns2preNs2pre
Ns2prePratik Joshi
 
LF_DPDK17_Lagopus Router
LF_DPDK17_Lagopus RouterLF_DPDK17_Lagopus Router
LF_DPDK17_Lagopus RouterLF_DPDK
 
Assignment cn tl
Assignment cn tlAssignment cn tl
Assignment cn tlH K
 
Generic network architecture discussion
Generic network architecture discussionGeneric network architecture discussion
Generic network architecture discussionARCFIRE ICT
 
June 28 Presentation
June 28 PresentationJune 28 Presentation
June 28 PresentationAndrew McGarry
 

More Related Content

What's hot

BPF: Next Generation of Programmable Datapath
BPF: Next Generation of Programmable DatapathBPF: Next Generation of Programmable Datapath
BPF: Next Generation of Programmable DatapathThomas Graf
 
Kernel Recipes 2013 - Nftables, what motivations and what solutions
Kernel Recipes 2013 - Nftables, what motivations and what solutionsKernel Recipes 2013 - Nftables, what motivations and what solutions
Kernel Recipes 2013 - Nftables, what motivations and what solutionsAnne Nicolas
 
2015 FOSDEM - OVS Stateful Services
2015 FOSDEM - OVS Stateful Services2015 FOSDEM - OVS Stateful Services
2015 FOSDEM - OVS Stateful ServicesThomas Graf
 
Kernel Recipes 2014 - What’s new in nftables?
Kernel Recipes 2014 - What’s new in nftables?Kernel Recipes 2014 - What’s new in nftables?
Kernel Recipes 2014 - What’s new in nftables?Anne Nicolas
 
Socket programming
Socket programmingSocket programming
Socket programmingNemiRathore
 
Beyond TCP: The evolution of Internet transport protocols
Beyond TCP: The evolution of Internet transport protocolsBeyond TCP: The evolution of Internet transport protocols
Beyond TCP: The evolution of Internet transport protocolsOlivier Bonaventure
 
DevConf 2014 Kernel Networking Walkthrough
DevConf 2014 Kernel Networking WalkthroughDevConf 2014 Kernel Networking Walkthrough
DevConf 2014 Kernel Networking WalkthroughThomas Graf
 
Open vSwitch - Stateful Connection Tracking & Stateful NAT
Open vSwitch - Stateful Connection Tracking & Stateful NATOpen vSwitch - Stateful Connection Tracking & Stateful NAT
Open vSwitch - Stateful Connection Tracking & Stateful NATThomas Graf
 
Ground to ns3 - Basic wireless topology implementation
Ground to ns3 - Basic wireless topology implementationGround to ns3 - Basic wireless topology implementation
Ground to ns3 - Basic wireless topology implementationJawad Khan
 
Building Topology in NS3
Building Topology in NS3Building Topology in NS3
Building Topology in NS3Rahul Hada
 
Tutorial ns 3-tutorial-slides
Tutorial ns 3-tutorial-slidesTutorial ns 3-tutorial-slides
Tutorial ns 3-tutorial-slidesVinayagam D
 
introduction to linux kernel tcp/ip ptocotol stack
introduction to linux kernel tcp/ip ptocotol stack introduction to linux kernel tcp/ip ptocotol stack
introduction to linux kernel tcp/ip ptocotol stack monad bobo
 
Compiling P4 to XDP, IOVISOR Summit 2017
Compiling P4 to XDP, IOVISOR Summit 2017Compiling P4 to XDP, IOVISOR Summit 2017
Compiling P4 to XDP, IOVISOR Summit 2017Cheng-Chun William Tu
 
LF_DPDK17_Lagopus Router
LF_DPDK17_Lagopus RouterLF_DPDK17_Lagopus Router
LF_DPDK17_Lagopus RouterLF_DPDK
 
Assignment cn tl
Assignment cn tlAssignment cn tl
Assignment cn tlH K
 

What's hot (20)

BPF: Next Generation of Programmable Datapath
BPF: Next Generation of Programmable DatapathBPF: Next Generation of Programmable Datapath
BPF: Next Generation of Programmable Datapath
 
Kernel Recipes 2013 - Nftables, what motivations and what solutions
Kernel Recipes 2013 - Nftables, what motivations and what solutionsKernel Recipes 2013 - Nftables, what motivations and what solutions
Kernel Recipes 2013 - Nftables, what motivations and what solutions
 
2015 FOSDEM - OVS Stateful Services
2015 FOSDEM - OVS Stateful Services2015 FOSDEM - OVS Stateful Services
2015 FOSDEM - OVS Stateful Services
 
Kernel Recipes 2014 - What’s new in nftables?
Kernel Recipes 2014 - What’s new in nftables?Kernel Recipes 2014 - What’s new in nftables?
Kernel Recipes 2014 - What’s new in nftables?
 
Socket programming
Socket programmingSocket programming
Socket programming
 
Ns3
Ns3Ns3
Ns3
 
Beyond TCP: The evolution of Internet transport protocols
Beyond TCP: The evolution of Internet transport protocolsBeyond TCP: The evolution of Internet transport protocols
Beyond TCP: The evolution of Internet transport protocols
 
DevConf 2014 Kernel Networking Walkthrough
DevConf 2014 Kernel Networking WalkthroughDevConf 2014 Kernel Networking Walkthrough
DevConf 2014 Kernel Networking Walkthrough
 
Open vSwitch - Stateful Connection Tracking & Stateful NAT
Open vSwitch - Stateful Connection Tracking & Stateful NATOpen vSwitch - Stateful Connection Tracking & Stateful NAT
Open vSwitch - Stateful Connection Tracking & Stateful NAT
 
ns-3 Tutorial
ns-3 Tutorialns-3 Tutorial
ns-3 Tutorial
 
Ground to ns3 - Basic wireless topology implementation
Ground to ns3 - Basic wireless topology implementationGround to ns3 - Basic wireless topology implementation
Ground to ns3 - Basic wireless topology implementation
 
Building Topology in NS3
Building Topology in NS3Building Topology in NS3
Building Topology in NS3
 
Introduction to ns3
Introduction to ns3Introduction to ns3
Introduction to ns3
 
Tutorial ns 3-tutorial-slides
Tutorial ns 3-tutorial-slidesTutorial ns 3-tutorial-slides
Tutorial ns 3-tutorial-slides
 
introduction to linux kernel tcp/ip ptocotol stack
introduction to linux kernel tcp/ip ptocotol stack introduction to linux kernel tcp/ip ptocotol stack
introduction to linux kernel tcp/ip ptocotol stack
 
Polyraptor
PolyraptorPolyraptor
Polyraptor
 
Compiling P4 to XDP, IOVISOR Summit 2017
Compiling P4 to XDP, IOVISOR Summit 2017Compiling P4 to XDP, IOVISOR Summit 2017
Compiling P4 to XDP, IOVISOR Summit 2017
 
Ns2pre
Ns2preNs2pre
Ns2pre
 
LF_DPDK17_Lagopus Router
LF_DPDK17_Lagopus RouterLF_DPDK17_Lagopus Router
LF_DPDK17_Lagopus Router
 
Assignment cn tl
Assignment cn tlAssignment cn tl
Assignment cn tl
 

Similar to Yusuf Haruna Docker internship slides

Generic network architecture discussion
Generic network architecture discussionGeneric network architecture discussion
Generic network architecture discussionARCFIRE ICT
 
The Network Ip Address Scheme
The Network Ip Address SchemeThe Network Ip Address Scheme
The Network Ip Address SchemeErin Rivera
 
Ecet 465 Success Begins / snaptutorial.com
Ecet 465 Success Begins / snaptutorial.comEcet 465 Success Begins / snaptutorial.com
Ecet 465 Success Begins / snaptutorial.comWilliamsTaylorzo
 
Ecet 465  Enthusiastic Study / snaptutorial.com
Ecet 465  Enthusiastic Study / snaptutorial.comEcet 465  Enthusiastic Study / snaptutorial.com
Ecet 465  Enthusiastic Study / snaptutorial.comStephenson39
 
ECET 465 Technology levels--snaptutorial.com
ECET 465 Technology levels--snaptutorial.comECET 465 Technology levels--snaptutorial.com
ECET 465 Technology levels--snaptutorial.comsholingarjosh104
 
Ecet 465 Massive Success / snaptutorial.com
Ecet 465 Massive Success / snaptutorial.comEcet 465 Massive Success / snaptutorial.com
Ecet 465 Massive Success / snaptutorial.comHarrisGeorgz
 
Performance analysis of container-based networking Solutions for high-perform...
Performance analysis of container-based networking Solutions for high-perform...Performance analysis of container-based networking Solutions for high-perform...
Performance analysis of container-based networking Solutions for high-perform...IJECEIAES
 
Final networks lab manual
Final networks lab manualFinal networks lab manual
Final networks lab manualJaya Prasanna
 
CCNA Course Training Presentation
CCNA Course Training PresentationCCNA Course Training Presentation
CCNA Course Training PresentationRohit Singh
 
Spring sim 2010-riley
Spring sim 2010-rileySpring sim 2010-riley
Spring sim 2010-rileySopna Sumāto
 
The Impact of Software-based Virtual Network in the Public Cloud
The Impact of Software-based Virtual Network in the Public CloudThe Impact of Software-based Virtual Network in the Public Cloud
The Impact of Software-based Virtual Network in the Public CloudChunghan Lee
 
3. RINA use cases, results, benefits
3. RINA use cases, results, benefits3. RINA use cases, results, benefits
3. RINA use cases, results, benefitsARCFIRE ICT
 
Yu linux-tsm2004
Yu linux-tsm2004Yu linux-tsm2004
Yu linux-tsm2004alegara
 
TEACHING TCP/IP NETWORKING USING HANDS-ON LABORATORY EXPERIENCE
TEACHING TCP/IP NETWORKING USING HANDS-ON LABORATORY EXPERIENCETEACHING TCP/IP NETWORKING USING HANDS-ON LABORATORY EXPERIENCE
TEACHING TCP/IP NETWORKING USING HANDS-ON LABORATORY EXPERIENCEFelipe Suarez
 
Building a sdn solution for the deployment of web application stacks in docker
Building a sdn solution for the deployment of web application stacks in dockerBuilding a sdn solution for the deployment of web application stacks in docker
Building a sdn solution for the deployment of web application stacks in dockerJorge Juan Mendoza
 

Similar to Yusuf Haruna Docker internship slides (20)

Generic network architecture discussion
Generic network architecture discussionGeneric network architecture discussion
Generic network architecture discussion
 
June 28 Presentation
June 28 PresentationJune 28 Presentation
June 28 Presentation
 
opnet lab report
opnet lab reportopnet lab report
opnet lab report
 
The Network Ip Address Scheme
The Network Ip Address SchemeThe Network Ip Address Scheme
The Network Ip Address Scheme
 
NP-lab-manual.docx
NP-lab-manual.docxNP-lab-manual.docx
NP-lab-manual.docx
 
NP-lab-manual (1).pdf
NP-lab-manual (1).pdfNP-lab-manual (1).pdf
NP-lab-manual (1).pdf
 
NP-lab-manual.pdf
NP-lab-manual.pdfNP-lab-manual.pdf
NP-lab-manual.pdf
 
Ecet 465 Success Begins / snaptutorial.com
Ecet 465 Success Begins / snaptutorial.comEcet 465 Success Begins / snaptutorial.com
Ecet 465 Success Begins / snaptutorial.com
 
Ecet 465  Enthusiastic Study / snaptutorial.com
Ecet 465  Enthusiastic Study / snaptutorial.comEcet 465  Enthusiastic Study / snaptutorial.com
Ecet 465  Enthusiastic Study / snaptutorial.com
 
ECET 465 Technology levels--snaptutorial.com
ECET 465 Technology levels--snaptutorial.comECET 465 Technology levels--snaptutorial.com
ECET 465 Technology levels--snaptutorial.com
 
Ecet 465 Massive Success / snaptutorial.com
Ecet 465 Massive Success / snaptutorial.comEcet 465 Massive Success / snaptutorial.com
Ecet 465 Massive Success / snaptutorial.com
 
Performance analysis of container-based networking Solutions for high-perform...
Performance analysis of container-based networking Solutions for high-perform...Performance analysis of container-based networking Solutions for high-perform...
Performance analysis of container-based networking Solutions for high-perform...
 
Final networks lab manual
Final networks lab manualFinal networks lab manual
Final networks lab manual
 
CCNA Course Training Presentation
CCNA Course Training PresentationCCNA Course Training Presentation
CCNA Course Training Presentation
 
Spring sim 2010-riley
Spring sim 2010-rileySpring sim 2010-riley
Spring sim 2010-riley
 
The Impact of Software-based Virtual Network in the Public Cloud
The Impact of Software-based Virtual Network in the Public CloudThe Impact of Software-based Virtual Network in the Public Cloud
The Impact of Software-based Virtual Network in the Public Cloud
 
3. RINA use cases, results, benefits
3. RINA use cases, results, benefits3. RINA use cases, results, benefits
3. RINA use cases, results, benefits
 
Yu linux-tsm2004
Yu linux-tsm2004Yu linux-tsm2004
Yu linux-tsm2004
 
TEACHING TCP/IP NETWORKING USING HANDS-ON LABORATORY EXPERIENCE
TEACHING TCP/IP NETWORKING USING HANDS-ON LABORATORY EXPERIENCETEACHING TCP/IP NETWORKING USING HANDS-ON LABORATORY EXPERIENCE
TEACHING TCP/IP NETWORKING USING HANDS-ON LABORATORY EXPERIENCE
 
Building a sdn solution for the deployment of web application stacks in docker
Building a sdn solution for the deployment of web application stacks in dockerBuilding a sdn solution for the deployment of web application stacks in docker
Building a sdn solution for the deployment of web application stacks in docker
 

Recently uploaded

Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝soniya singh
 
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsCall Girls in Nagpur High Profile
 
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCollege Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCall Girls in Nagpur High Profile
 
Processing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxProcessing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxpranjaldaimarysona
 
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130Suhani Kapoor
 
Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024hassan khalil
 
Extrusion Processes and Their Limitations
Extrusion Processes and Their LimitationsExtrusion Processes and Their Limitations
Extrusion Processes and Their Limitations120cr0395
 
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...Christo Ananth
 
(SHREYA) Chakan Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Esc...
(SHREYA) Chakan Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Esc...(SHREYA) Chakan Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Esc...
(SHREYA) Chakan Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Esc...ranjana rawat
 
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLSMANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLSSIVASHANKAR N
 
the ladakh protest in leh ladakh 2024 sonam wangchuk.pptx
the ladakh protest in leh ladakh 2024 sonam wangchuk.pptxthe ladakh protest in leh ladakh 2024 sonam wangchuk.pptx
the ladakh protest in leh ladakh 2024 sonam wangchuk.pptxhumanexperienceaaa
 
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...Soham Mondal
 
Analog to Digital and Digital to Analog Converter
Analog to Digital and Digital to Analog ConverterAnalog to Digital and Digital to Analog Converter
Analog to Digital and Digital to Analog ConverterAbhinavSharma374939
 
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 
The Most Attractive Pune Call Girls Budhwar Peth 8250192130 Will You Miss Thi...
The Most Attractive Pune Call Girls Budhwar Peth 8250192130 Will You Miss Thi...The Most Attractive Pune Call Girls Budhwar Peth 8250192130 Will You Miss Thi...
The Most Attractive Pune Call Girls Budhwar Peth 8250192130 Will You Miss Thi...ranjana rawat
 
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...srsj9000
 
GDSC ASEB Gen AI study jams presentation
GDSC ASEB Gen AI study jams presentationGDSC ASEB Gen AI study jams presentation
GDSC ASEB Gen AI study jams presentationGDSCAESB
 
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escortsranjana rawat
 

Recently uploaded (20)

Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
 
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
 
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service NashikCollege Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
College Call Girls Nashik Nehal 7001305949 Independent Escort Service Nashik
 
Processing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptxProcessing & Properties of Floor and Wall Tiles.pptx
Processing & Properties of Floor and Wall Tiles.pptx
 
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
 
Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024
 
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINEDJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
 
Extrusion Processes and Their Limitations
Extrusion Processes and Their LimitationsExtrusion Processes and Their Limitations
Extrusion Processes and Their Limitations
 
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
 
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
Call for Papers - African Journal of Biological Sciences, E-ISSN: 2663-2187, ...
 
(SHREYA) Chakan Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Esc...
(SHREYA) Chakan Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Esc...(SHREYA) Chakan Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Esc...
(SHREYA) Chakan Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Esc...
 
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLSMANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
 
the ladakh protest in leh ladakh 2024 sonam wangchuk.pptx
the ladakh protest in leh ladakh 2024 sonam wangchuk.pptxthe ladakh protest in leh ladakh 2024 sonam wangchuk.pptx
the ladakh protest in leh ladakh 2024 sonam wangchuk.pptx
 
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
 
Analog to Digital and Digital to Analog Converter
Analog to Digital and Digital to Analog ConverterAnalog to Digital and Digital to Analog Converter
Analog to Digital and Digital to Analog Converter
 
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 
The Most Attractive Pune Call Girls Budhwar Peth 8250192130 Will You Miss Thi...
The Most Attractive Pune Call Girls Budhwar Peth 8250192130 Will You Miss Thi...The Most Attractive Pune Call Girls Budhwar Peth 8250192130 Will You Miss Thi...
The Most Attractive Pune Call Girls Budhwar Peth 8250192130 Will You Miss Thi...
 
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
 
GDSC ASEB Gen AI study jams presentation
GDSC ASEB Gen AI study jams presentationGDSC ASEB Gen AI study jams presentation
GDSC ASEB Gen AI study jams presentation
 
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
 

Yusuf Haruna Docker internship slides

  • 1. An Analysis and Empirical Study of Docker Networking Yusuf HARUNA University of Nice Sophia Antipolis/UCA, France 3 July 2019 Master II IFI - UBINET Internship Oral Defence Supervisors: Guillaume Urvoy-Keller & Dino Lopez-Pacheco, i3s Laboratory Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 1 / 20
  • 2. Outline 1 Introduction 2 Three popular cloud Applications 3 Benchmarks 4 Container Networking modes 5 Experimental Results 6 RSS/RPS 7 Conclusion Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 2 / 20
  • 3. Introduction Traditional Virtualization Vs Lightweight Virtualization Source: https://www.docker.com/ Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 3 / 20
  • 4. Introduction Motivations High use of container-based virtualization in the cloud and search engines e.g google launches about 7,000 containers every second. Objectives Understand the performance of different Docker Networking solutions, Build a realistic testbed: select some applications + benchmarks, Obtain some results by testing our testbed and monitor system level performance, Check if we can reduce the overhead of the overlay Networks using OS/hardware support. Challenges Tune the testbed and do some tests with RSS/RPS Hardware dependency Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 4 / 20
  • 5. Three popular cloud Applications + iperf3 An in-memory key-value store: Memcached, stress more memory + a bit of network A web server: Nginx, stress more network A Relational Database server: PostgreSQL, stress more network depending on the quarry + more I/O Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 5 / 20
  • 6. Benchmarks iperf3: to test maximum achievable throughput on IP networks. ∗ TCP throughput ∗ UDP throughput memtier benchmark: to measure the performance of memcached. ∗ Spawns 4 threads ∗ Each thread creates 50 TCP connections ∗ Reports the average number of responses/second, the average latency to respond to a memcached command + SET/GET latency Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 6 / 20
  • 7. Benchmarks wrk2: to measure the performance of nginx server. ∗ Spawns two threads ∗ Creates a total of 100 TCP connections to make a request to the server ∗ The throughput in requests/second can be set in the tool ∗ Outputs latency pgbench: to measure the performance of PostgreSQL server. ∗ Creates a database of one million banking accounts ∗ Executes transactions with a total of 100 connections with 4 threads ∗ Outputs latency Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 7 / 20
  • 8. Container Networking modes Figure 1: Experimental setup Two ways to deploy containers: on VMs b/c of security (e.g cloud provider) or on a PM e.g google Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 8 / 20
  • 9. Container Networking modes on multiple hosts Host mode: In this mode, containers share the namespace of the host OS. Source: https://www.onug.net/blog/ container-networking-easy-button-for-app-teams-heartburn-for-networking-and-security-teams/ Namespace is a way of logically separating processes along different dimensions; Network, IPC, User, PID, Mount or UTS namespace. Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 9 / 20
  • 10. Container Networking modes NAT (Network Address Translation): ∗ Allows containers to communicate using the public IP address of their host machine + port number of the container ∗ Maps the private address of a container to its port number in a NAT table Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 10 / 20
  • 11. Container Networking modes Docker default overlay Network: It uses Virtual Extensible LAN to connect containers on multiple hosts. Source: https://www.youtube.com/watch?v=Jqm_4TMmQz8 Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 11 / 20
  • 12. Container Networking modes Weave: Is another implementation of overlay network, it uses a weave router container on each Docker host and the network is made from these connected weave routers. Source: https://sreeninet.wordpress.com/2015/01/18/docker-networking-weave/ Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 12 / 20
  • 13. Experimental Results iperf3 throughput (a) TCP (b) UDP Figure 2: iperf3 TCP and UDP throughput Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 13 / 20
  • 14. Experimental Results Memcached throughput and latency (a) Throughput (b) Latency Figure 3: memcached throughput and latency Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 14 / 20
  • 15. Experimental Results Latency of Nginx server Figure 4: Nginx 1MB html file latency on 3K reqs/sec Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 15 / 20
  • 16. Experimental Results PostgreSQL latency Figure 5: PostgreSQL latency on 500 trans/sec Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 16 / 20
  • 17. Experimental Results (a) iperf3 (b) PostgreSQL Figure 6: CPU utilization of iperf3 and PostgreSQL servers Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 17 / 20
  • 18. RSS/RPS - A Linux kernel support RSS: Receive Side Scaling ∗ A complementary technique in the Linux networking stack to increase parallelism and improve performance for multi-processor systems ∗ Contemporary NICs support multi-queue for receiving and forwarding packets ∗ Upon reception, a NIC can send different packets to different queues to distribute processing among CPUs ∗ RPS (Receive Packet Steering) is logically a software implementation of RSS Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 18 / 20
  • 19. Conclusion Host mode has the best performance among all the 4 modes followed by NAT with few performance drop, while the two overlay networks (VXLAN and weave) have more performance drop because of the double encapsulation. The overlay networks consume more system resources. We would like to reduce the overhead of the overlay networks using OS/hardware kernel support. We started collecting some results but there are some questions on it, e.g. in memcached, the throughput improved but the latency increase a bit, hence, we would like to check why. The shell scripts of our testbed is open sourced at https://github.com/ Yusuf-Haruna/Analysis-of-Docker-Networking-Shell-scripts. Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 19 / 20
  • 20. Thanks for your attention Yusuf Haruna yusuf.haruna@etu.univ-cotedazur.fr Questions? Y. Haruna (Ubinet Master) An Analysis and Emp. Study of Docker Net. 3 July 2019 20 / 20