The document details the process of dockerizing Windows Server applications, including steps for setting up Docker and configuring containers. It compares OS architectures and outlines the architecture of container development and management tools for both Windows and Linux environments. Additionally, it discusses various networking options available for containers and their respective use cases.

1. Dockerizing Windows Server
Applications
Ender Barillas
Taylor Brown
Program Manager
Principal Program Manager Lead

2. Setting Up
Agenda
Architecture
More

3. Setting up

4. Setting up
Containers Feature:
• Install-WindowsFeature containers
• Restart-Computer –Force

5. Setting up
Docker:
• New-Item -Type Directory -Path 'C:Program Filesdocker'
• Invoke-WebRequest https://aka.ms/tp5/b/dockerd -OutFile
$env:ProgramFilesdockerdockerd.exe
• Invoke-WebRequest https://aka.ms/tp5/b/docker -OutFile
$env:ProgramFilesdockerdocker.exe
• [Environment]::SetEnvironmentVariable("Path", $env:Path + ";C:Program FilesDocker",
[EnvironmentVariableTarget]::Machine)
• Close and reopen powershell
• dockerd --register-service
• Start-Service docker

6. Setting up
Base OS image:
• Install-ContainerOSImage <wim path>
• Restart-Service docker
• docker images
• docker tag windowsservercore:10.0.14300.1000 windowsservercore:latest

7. Architecture

8. Architecture
Container
Development and
Management Toolset
Container Runtime

9. Architecture In Linux
containerd + runc
REST Interface
libcontainerd graphlibnetwork plugins
Control Groups
cgroups
Namespaces
Pid, net, ipc, mnt, uts
Layer Capabilities
Union Filesystems AUFS,
btrfs, vfs, zfs*,
DeviceMapper
Other OS
Functionality
Docker Client
Docker
Registry
Docker Compose Docker Swarm

10. Architecture In Windows
REST Interface
libcontainerd graphlibnetwork plugins
Control Groups
Job objects
Namespaces
Object Namespace,
Process Table,
Networking
Layer Capabilities
Registry, Union like
filesystem extensions
Other OS
Functionality
Compute Service
Docker Client
Docker
Registry
Docker Compose Docker Swarm

11. Comparing OS Architectures
Control Groups
cgroups
Namespaces
Pid, net, ipc, mnt, uts
Layer Capabilities
Union Filesystems: AUFS,
btrfs, vfs, zfs*,DeviceMapper
Other OS
Functionality
runC
REST Interface
libcontainerd graphlibnetwork plugins
Control Groups
Job objects
Namespaces
Object Namespace, Process
Table, Networking
Layer Capabilities
Registry, Union like
filesystem extensions
Other OS
Functionality
Compute Services
Docker Client Docker SwarmDocker Compose Docker Registry

12. Host User Mode
Container
Management
Windows Server Containers
System
Processes
Application
Processes
System
Processes
System
Processes
Application
Processes

13. Hyper-V Containers
Host User Mode Virtual Machine
Specifically Optimized To Run a Container
Container
Management
System
Processes
System
Processes
Application
Processes

14. Same Container Images, Same API
Container
Management
Docker
Windows Container
Images
Hyper-V Container
Windows Server
Container

15. Networking

16. Container Networking Choices
NAT
• Simple
• Private IP Addresses
• No cross-node container traffic
• Port Forwarding
• Host-based Firewall & QoS
• Ideal for Developers
L2 Tunneling
• Full network virtualization
• Isolated network & services
• Multi-node traffic
• MAC Virtualization
• Cloud-scale Deployments
Transparent
• Simple
• Existing L2 network (DHCP)
• Cross-node traffic
• No isolation (MAC spoofing)
• Developers or Small Deployments

17. Physical HostNetwork Stack
Virtual Machine
Specifically Optimized To Run a Container
System
Processes
Application
Processes
TCP/IP
Software
System
Processes
Application
Processes
Host TCP/IP
Software
Hyper-V
Container
System
Processes
Application
Processes
TCP/IP
Software
Physical Network

18. Thank you!