Transparencias usadas para la charla del Autentia OS del 2018, donde se hace una introducción a Docker y sus "trampas" más típicas.

1. Docker y las películas de chinos

5. The underlying technology
● Namespaces
○ Limits what you can see
○ The pid namespace: Process isolation (PID: Process ID).
○ The net namespace: Managing network interfaces (NET: Networking).
○ The ipc namespace: Managing access to IPC resources (IPC: InterProcess Communication).
○ The mnt namespace: Managing filesystem mount points (MNT: Mount).
○ The uts namespace: Isolating kernel and version identifiers. (UTS: Unix Timesharing System).
● Control groups
○ A cgroup limits how much you can use of specific set of resources.
○ Control groups allow Docker Engine to share available hardware resources to containers and
optionally enforce limits and constraints. For example, you can limit the memory available to a
specific container.

8. Vamos
al
lío

9. Mis
buenas
prácitcas

10. Ponle nombre a todo, incluidas las redes

11. https://docs.docker.com/engine/reference/builder/#volume
Changing the volume from within the Dockerfile:
If any build steps change the data within the
volume after it has been declared, those
changes will be discarded.
https://boxboat.com/2017/01/23/volumes-and-dockerfiles-do
nt-mix/
No crees volúmenes dentro del Dockerfile

12. Cuidado con las “magias” del docker daemon

13. Referencias
● http://www.zdnet.com/article/what-is-docker-and-why-is-it
-so-darn-popular/
● https://docs.docker.com/engine/docker-overview/#the-un
derlying-technology
● https://delftswa.github.io/chapters/docker/
● https://medium.com/@nagarwal/understanding-the-dock
er-internals-7ccb052ce9fe
● https://jaxenter.com/nobody-puts-java-container-139373.
html
● https://developers.redhat.com/blog/2017/03/14/java-insid
e-docker/
● https://dzone.com/articles/how-to-decrease-jvm-memory-
consumption-in-docker-u
● https://mjg123.github.io/2018/01/10/Java-in-containers-jd
k10.html

14. ¡Muchas gracias!