Uploaded byssuserb53446
PPTX, PDF15 views

SummerStudent17_HandsOn Data Cloud Computing.pptx

SummerStudent17_HandsOn Data Cloud Computing.pptx

Embed presentation

Download to read offline
Docker What, Why, How? Enrico Bocchi Hugo González Labrador CERN IT-Storage Group Summer Student Lab 14 July 2017 CERN, Geneva
What is Docker? • Docker is a software providing the ability to deploy applications in containers. What is a container? • It is an OS-level virtualization method in which the kernel allows the existence of multiple user-space instances, instead of just one. Why do we need containers? 1. Isolate a process and it dependencies in a self-contained box 2. Set limits on the resources, e.g., CPU, RAM, I/O, …, that can be leveraged by such process
Containers VS Virtual Machines VM: Hypervisor-based isolation Container based isolation
Containers VS Virtual Machines • Provisioning: • VM: Need to boot the guest OS. Can take seconds/minutes • Container: No need to boot. Resources are reserved in milliseconds • Performance • VM: Each instruction executed on the guest OS must be translated by the hypervisor and executed on the host OS • Containers: Isolation done at the kernel level. Resources for containers are quasi-native.
Advantages of containers • One container, one task • Each container can be used for a single task (e.g., httpd, mysql, nodejs, redis, …) with predictable resources requirements • Containers can be limited in CPU and memory to limit their resource usage • Isolation of activities taking place within the container • Isolation of processes – reduction of potential attacks • Isolation of the file system – no IO operations on the host fs • Control of network activities – IP, routing, firewall rules replicated and fine-grained configurable for each container
History of Containers • 1979: Introduction of chroot in Unix v7 • 2000: FreeBSD Jails – Introduction of subsystems, each equipped with an independent IP layer • 2001: Linux VServer – Partitioning of resources (filesystem, memory, network) within a Linux host • 2004: Solaris Containers (aka Solaris Zones) • 2008: Linux Containers (lxc) – Isolation of processes via cgroup and user namespaces • 2013: Docker – Full-fledged ecosystem for containers • 2016: rkt container engine for CoreOS – Implementation compliant with Open Container Initiative directives
«Build. Ship. Run. Any app. Anywhere.»
Build. Ship. Run. Build • Build an image of one application • Images are (almost) immutable. They cannot be modified once built Ship • Hosting of the image on a Registry (e.g., Docker Hub, GitLab Registry, …) • Public registry VS private registry Run • Start you application in a container • Isolation of processes, network, filesystem, users/groups, resource control
Any App. Anywhere. • Bash • Phython • C++ • Apache • MySQL • … • Linux x64 • MacOS • Windows • Dedicated host • Virtual Machine • OpenStack • Amazon AWS • Microsoft Azure • RaspberryPi
Boxed Containerized EOS, CERNBox, SWAN Enrico Bocchi Hugo González Labrador CERN IT-Storage Group Summer Student Lab 14 July 2017 CERN, Geneva
Preparation of Docker-based Package
Why a Docker-based Package • Exact replica of the services in production • Useful for testing and troubleshooting purposes • Troubleshooting and testing with SmashBox • New releases of eos and xroot clients • Give the possibility to non-CERN users to try our services • Docker images distributed via GitLab registry + GitHub for setup scripts • Runs on Amazon EC2! • https://ec2-35-157-222-102.eu-central-1.compute.amazonaws.com • Potential testing on Helix Nebula Cloud in future • Successful deployment at the premises of Up2U technical partners
Architecture in Production
Architecture in Docker containers
Architecture in Docker containers • Deployment via Docker and Docker-compose • Centralized identity management via (containerized) LDAP server • Persistent storage on Docker volumes • User data stored through EOS • User accounts on LDAP • Full stack of CERN services in 14 Docker containers • 1 for LDAP • 8 for EOS storage (+1 for deployment orchestration) • 2 for CERNBox • 3 for SWAN (not counting Single-user Jupyter containers)
Where to Download • Documentation page: https://cernbox.cern.ch/cernbox/doc/boxed • GitHub repo: https://github.com/cernbox/uboxed
SummerStudent17_HandsOn Data Cloud Computing.pptx

More Related Content

PDF
"Lightweight Virtualization with Linux Containers and Docker". Jerome Petazzo...
byYandex
 
PDF
Docker and-containers-for-development-and-deployment-scale12x
byrkr10
 
PDF
Docker
byNeeraj Wadhwa
 
PDF
Docker introduction for Carbon IT
byyannick grenzinger
 
PDF
Lightweight Virtualization with Linux Containers and Docker | YaC 2013
bydotCloud
 
PDF
Lightweight Virtualization with Linux Containers and Docker I YaC 2013
byDocker, Inc.
 
PDF
Docker handons-workshop-for-charity
byYusuf Hadiwinata Sutandar
 
PDF
Introduction to Docker (as presented at December 2013 Global Hackathon)
byJérôme Petazzoni
 
"Lightweight Virtualization with Linux Containers and Docker". Jerome Petazzo...
byYandex
 
Docker and-containers-for-development-and-deployment-scale12x
byrkr10
 
Docker
byNeeraj Wadhwa
 
Docker introduction for Carbon IT
byyannick grenzinger
 
Lightweight Virtualization with Linux Containers and Docker | YaC 2013
bydotCloud
 
Lightweight Virtualization with Linux Containers and Docker I YaC 2013
byDocker, Inc.
 
Docker handons-workshop-for-charity
byYusuf Hadiwinata Sutandar
 
Introduction to Docker (as presented at December 2013 Global Hackathon)
byJérôme Petazzoni
 

Similar to SummerStudent17_HandsOn Data Cloud Computing.pptx

PDF
Introduction to Docker at SF Peninsula Software Development Meetup @Guidewire
bydotCloud
 
PDF
Docker_AGH_v0.1.3
byWitold 'Ficio' Kopel
 
PDF
LXC, Docker, and the future of software delivery | LinuxCon 2013
bydotCloud
 
PDF
LXC Docker and the Future of Software Delivery
byDocker, Inc.
 
PPTX
Containers and Docker
byDamian T. Gordon
 
PDF
Docker
byCodeister Technolgoies
 
PPTX
Intro Docker october 2013
bydotCloud
 
PDF
Docker Intro at the Google Developer Group and Google Cloud Platform Meet Up
byJérôme Petazzoni
 
PDF
Introduction to Docker and Linux Containers @ Cloud Computing Rhein Main
byPuja Abbassi
 
PDF
Docker Introduction + what is new in 0.9
byJérôme Petazzoni
 
PDF
Docker Introduction, and what's new in 0.9 — Docker Palo Alto at RelateIQ
byJérôme Petazzoni
 
PDF
Docker 0.11 at MaxCDN meetup in Los Angeles
byJérôme Petazzoni
 
PDF
The ABC of Docker: The Absolute Best Compendium of Docker
byAniekan Akpaffiong
 
PPTX
Intro to Docker October 2013
byDocker, Inc.
 
PPTX
Intro to Docker November 2013
byDocker, Inc.
 
PDF
Let's Containerize New York with Docker!
byJérôme Petazzoni
 
PDF
Cloud Native Computing - Part III - Containers
byLinjith Kunnon
 
PDF
Introduction to Docker, December 2014 "Tour de France" Bordeaux Special Edition
byJérôme Petazzoni
 
PDF
Docker Up and Running for Web Developers
byAmr Fawzy
 
PDF
Docker up and Running For Web Developers
byBADR
 
Introduction to Docker at SF Peninsula Software Development Meetup @Guidewire
bydotCloud
 
Docker_AGH_v0.1.3
byWitold 'Ficio' Kopel
 
LXC, Docker, and the future of software delivery | LinuxCon 2013
bydotCloud
 
LXC Docker and the Future of Software Delivery
byDocker, Inc.
 
Containers and Docker
byDamian T. Gordon
 
Docker
byCodeister Technolgoies
 
Intro Docker october 2013
bydotCloud
 
Docker Intro at the Google Developer Group and Google Cloud Platform Meet Up
byJérôme Petazzoni
 
Introduction to Docker and Linux Containers @ Cloud Computing Rhein Main
byPuja Abbassi
 
Docker Introduction + what is new in 0.9
byJérôme Petazzoni
 
Docker Introduction, and what's new in 0.9 — Docker Palo Alto at RelateIQ
byJérôme Petazzoni
 
Docker 0.11 at MaxCDN meetup in Los Angeles
byJérôme Petazzoni
 
The ABC of Docker: The Absolute Best Compendium of Docker
byAniekan Akpaffiong
 
Intro to Docker October 2013
byDocker, Inc.
 
Intro to Docker November 2013
byDocker, Inc.
 
Let's Containerize New York with Docker!
byJérôme Petazzoni
 
Cloud Native Computing - Part III - Containers
byLinjith Kunnon
 
Introduction to Docker, December 2014 "Tour de France" Bordeaux Special Edition
byJérôme Petazzoni
 
Docker Up and Running for Web Developers
byAmr Fawzy
 
Docker up and Running For Web Developers
byBADR
 

More from ssuserb53446

PPTX
csu-2020-harassment-and-discrimination-training-program.pptx
byssuserb53446
 
PPTX
procedure for data collection in hand gestures
byssuserb53446
 
PPTX
20180126-ROC Roc Curve-AV-IML_v008_final.pptx
byssuserb53446
 
PPTX
One-Dimensional Travelling Wave equa.pptx
byssuserb53446
 
PPT
06-scheduling.ppt including multiple CPUs
byssuserb53446
 
PPT
02-archsupport.ppt Architecture Support for OPS
byssuserb53446
 
PPTX
Analog Communication Performance underNoise .pptx
byssuserb53446
 
PPTX
EFFECTS OF NOISE ON THE PERFOMANCE OF ANALOGUE.pptx
byssuserb53446
 
PPTX
Managed_ML_Systems_ sf Presentation.pptx
byssuserb53446
 
PPTX
Communications Systems Analogue Angle Modulation
byssuserb53446
 
PPT
Engineering Communication Systems Course
byssuserb53446
 
PPT
Embedded Systems ARM Computer Architecture
byssuserb53446
 
PPT
Receiver Operating Characteristics SIB-ROC.ppt
byssuserb53446
 
PPT
introduction to database systems ch2.ppt
byssuserb53446
 
PPTX
Asynchronous Transfer Mode Introductory Presentation
byssuserb53446
 
PPT
Database System Concepts Chapter 1: Introduction to Databases
byssuserb53446
 
PPTX
Entity relationship Models from Chapter 4
byssuserb53446
 
PPT
This is an introduction to Database Relational Model
byssuserb53446
 
PPT
Database System Introductory Concepts and All
byssuserb53446
 
csu-2020-harassment-and-discrimination-training-program.pptx
byssuserb53446
 
procedure for data collection in hand gestures
byssuserb53446
 
20180126-ROC Roc Curve-AV-IML_v008_final.pptx
byssuserb53446
 
One-Dimensional Travelling Wave equa.pptx
byssuserb53446
 
06-scheduling.ppt including multiple CPUs
byssuserb53446
 
02-archsupport.ppt Architecture Support for OPS
byssuserb53446
 
Analog Communication Performance underNoise .pptx
byssuserb53446
 
EFFECTS OF NOISE ON THE PERFOMANCE OF ANALOGUE.pptx
byssuserb53446
 
Managed_ML_Systems_ sf Presentation.pptx
byssuserb53446
 
Communications Systems Analogue Angle Modulation
byssuserb53446
 
Engineering Communication Systems Course
byssuserb53446
 
Embedded Systems ARM Computer Architecture
byssuserb53446
 
Receiver Operating Characteristics SIB-ROC.ppt
byssuserb53446
 
introduction to database systems ch2.ppt
byssuserb53446
 
Asynchronous Transfer Mode Introductory Presentation
byssuserb53446
 
Database System Concepts Chapter 1: Introduction to Databases
byssuserb53446
 
Entity relationship Models from Chapter 4
byssuserb53446
 
This is an introduction to Database Relational Model
byssuserb53446
 
Database System Introductory Concepts and All
byssuserb53446
 

Recently uploaded

PDF
Machine Learning Lectures -- Outliers in Data
byZahra Sadeghi
 
PPTX
From economy-wide energy system optimization to energy affordability for cons...
byIEA-ETSAP
 
PDF
Presentation - Data Migration Strategies: Big Bang vs Phased Migration for Bu...
byalexmartincaneda
 
PPTX
EMTECH-LESSON-3.pptxggggggggggggggggggggggg
byERICADEMESA
 
PPTX
National Art School Diploma
by897eemzixp
 
PPTX
SQL - Basics of Databases 101 Learning.pdf
byJainnS
 
PPTX
normal labor normal labor normal labor normal labor normal labor normal labor...
bymeksbaba1
 
PDF
Data Processing (2026)
byOptymyze
 
PDF
Data Migration Best Practices: A Visual Guide for Secure & Accurate Data Tran...
byalexmartincaneda
 
PPTX
Business Ethics ppt (1).pptx for grade 12
bysuayanabegail
 
PPTX
PPT sidang disertasi terbuka terbaru.pptx
byRifaiteguhSaputra
 
PDF
Operations and Data Support Portfolio | Delbert Ross Wanjala Investor Relatio...
byDelbertRossWanjala
 
PPTX
The Archive Fall 2025 Semester Overview by Daisy-Grace Hooper
bydh24372
 
PDF
Documenting Architectural Styles using CIDOC- CRM
bymagas4
 
PDF
Let's build machine learning CNN in RUST + bonus_ ML in water meter with ESP...
byMarcin Bielak
 
PPTX
Can AI see like a tourist? An exploration of Vision Language Models for autom...
byMODUL Technology GmbH
 
PDF
Glasgow Reading Group Invited Talk - Causality-driven Adhoc IR.pdf
bysuchanadatta3
 
PDF
Doctoral of Philosophy Thesis Defense Slides
bysuchanadatta3
 
PPTX
Data Collection lessons for grade 5 third quarter
byLorizaMElwas
 
PPTX
Population & Sample in Bio-Statistics for Allied Health Science
byEzhumalaiG3
 
Machine Learning Lectures -- Outliers in Data
byZahra Sadeghi
 
From economy-wide energy system optimization to energy affordability for cons...
byIEA-ETSAP
 
Presentation - Data Migration Strategies: Big Bang vs Phased Migration for Bu...
byalexmartincaneda
 
EMTECH-LESSON-3.pptxggggggggggggggggggggggg
byERICADEMESA
 
National Art School Diploma
by897eemzixp
 
SQL - Basics of Databases 101 Learning.pdf
byJainnS
 
normal labor normal labor normal labor normal labor normal labor normal labor...
bymeksbaba1
 
Data Processing (2026)
byOptymyze
 
Data Migration Best Practices: A Visual Guide for Secure & Accurate Data Tran...
byalexmartincaneda
 
Business Ethics ppt (1).pptx for grade 12
bysuayanabegail
 
PPT sidang disertasi terbuka terbaru.pptx
byRifaiteguhSaputra
 
Operations and Data Support Portfolio | Delbert Ross Wanjala Investor Relatio...
byDelbertRossWanjala
 
The Archive Fall 2025 Semester Overview by Daisy-Grace Hooper
bydh24372
 
Documenting Architectural Styles using CIDOC- CRM
bymagas4
 
Let's build machine learning CNN in RUST + bonus_ ML in water meter with ESP...
byMarcin Bielak
 
Can AI see like a tourist? An exploration of Vision Language Models for autom...
byMODUL Technology GmbH
 
Glasgow Reading Group Invited Talk - Causality-driven Adhoc IR.pdf
bysuchanadatta3
 
Doctoral of Philosophy Thesis Defense Slides
bysuchanadatta3
 
Data Collection lessons for grade 5 third quarter
byLorizaMElwas
 
Population & Sample in Bio-Statistics for Allied Health Science
byEzhumalaiG3
 

SummerStudent17_HandsOn Data Cloud Computing.pptx

  • 2.
    Docker What, Why, How? EnricoBocchi Hugo González Labrador CERN IT-Storage Group Summer Student Lab 14 July 2017 CERN, Geneva
  • 3.
    What is Docker? •Docker is a software providing the ability to deploy applications in containers. What is a container? • It is an OS-level virtualization method in which the kernel allows the existence of multiple user-space instances, instead of just one. Why do we need containers? 1. Isolate a process and it dependencies in a self-contained box 2. Set limits on the resources, e.g., CPU, RAM, I/O, …, that can be leveraged by such process
  • 4.
    Containers VS VirtualMachines VM: Hypervisor-based isolation Container based isolation
  • 5.
    Containers VS VirtualMachines • Provisioning: • VM: Need to boot the guest OS. Can take seconds/minutes • Container: No need to boot. Resources are reserved in milliseconds • Performance • VM: Each instruction executed on the guest OS must be translated by the hypervisor and executed on the host OS • Containers: Isolation done at the kernel level. Resources for containers are quasi-native.
  • 6.
    Advantages of containers •One container, one task • Each container can be used for a single task (e.g., httpd, mysql, nodejs, redis, …) with predictable resources requirements • Containers can be limited in CPU and memory to limit their resource usage • Isolation of activities taking place within the container • Isolation of processes – reduction of potential attacks • Isolation of the file system – no IO operations on the host fs • Control of network activities – IP, routing, firewall rules replicated and fine-grained configurable for each container
  • 7.
    History of Containers •1979: Introduction of chroot in Unix v7 • 2000: FreeBSD Jails – Introduction of subsystems, each equipped with an independent IP layer • 2001: Linux VServer – Partitioning of resources (filesystem, memory, network) within a Linux host • 2004: Solaris Containers (aka Solaris Zones) • 2008: Linux Containers (lxc) – Isolation of processes via cgroup and user namespaces • 2013: Docker – Full-fledged ecosystem for containers • 2016: rkt container engine for CoreOS – Implementation compliant with Open Container Initiative directives
  • 8.
    «Build. Ship. Run.Any app. Anywhere.»
  • 9.
    Build. Ship. Run. Build •Build an image of one application • Images are (almost) immutable. They cannot be modified once built Ship • Hosting of the image on a Registry (e.g., Docker Hub, GitLab Registry, …) • Public registry VS private registry Run • Start you application in a container • Isolation of processes, network, filesystem, users/groups, resource control
  • 10.
    Any App. Anywhere. •Bash • Phython • C++ • Apache • MySQL • … • Linux x64 • MacOS • Windows • Dedicated host • Virtual Machine • OpenStack • Amazon AWS • Microsoft Azure • RaspberryPi
  • 11.
    Boxed Containerized EOS, CERNBox,SWAN Enrico Bocchi Hugo González Labrador CERN IT-Storage Group Summer Student Lab 14 July 2017 CERN, Geneva
  • 12.
  • 13.
    Why a Docker-basedPackage • Exact replica of the services in production • Useful for testing and troubleshooting purposes • Troubleshooting and testing with SmashBox • New releases of eos and xroot clients • Give the possibility to non-CERN users to try our services • Docker images distributed via GitLab registry + GitHub for setup scripts • Runs on Amazon EC2! • https://ec2-35-157-222-102.eu-central-1.compute.amazonaws.com • Potential testing on Helix Nebula Cloud in future • Successful deployment at the premises of Up2U technical partners
  • 14.
  • 15.
  • 16.
    Architecture in Dockercontainers • Deployment via Docker and Docker-compose • Centralized identity management via (containerized) LDAP server • Persistent storage on Docker volumes • User data stored through EOS • User accounts on LDAP • Full stack of CERN services in 14 Docker containers • 1 for LDAP • 8 for EOS storage (+1 for deployment orchestration) • 2 for CERNBox • 3 for SWAN (not counting Single-user Jupyter containers)
  • 17.
    Where to Download •Documentation page: https://cernbox.cern.ch/cernbox/doc/boxed • GitHub repo: https://github.com/cernbox/uboxed