Dockerize it: stop living in the past and embrace the future by Alex Nadalin
-
Upload
codemotion-dubai -
Category
Design
-
view
188 -
download
3
Transcript of Dockerize it: stop living in the past and embrace the future by Alex Nadalin
“Containers have similar resourceisolation and allocation benefits as
virtual machines but a differentarchitectural approach allows them
to be much more portable and efficient”
https://www.docker.com/what-docker
Law #1
Even though they might try to solve similar problems, containers and VMs are fundamentally different
# docker-compose.ymlservices: web: build: . ports: - "8080:8080"
volumes: - .:/src
$ docker-compose up
apiVersion: v1kind: ReplicationControllermetadata: name: app labels: name: appspec: replicas: 1 selector: name: app template: metadata: labels: name: app spec: containers: - name: master image: my-nodejs-app ports: - containerPort: 1234
apiVersion: v1kind: ReplicationControllermetadata: name: app labels: name: appspec: replicas: 1 selector: name: app template: metadata: labels: name: app spec: containers: - name: master image: my-nodejs-app ports: - containerPort: 1234
apiVersion: v1kind: ReplicationControllermetadata: name: app labels: name: appspec: replicas: 1 selector: name: app template: metadata: labels: name: app spec: containers: - name: master image: my-nodejs-app ports: - containerPort: 1234
NERD ADVICEContainers aren’tbetter than VMs, it really just depends on what you need to dohttps://goo.gl/DGQKDA
NERD ADVICEForget about the hosts, go GCE if you canhttps://goo.gl/haanq4
NERD ADVICEElse, use a mature orchestration platformhttp://kubernetes.io/ https://goo.gl/sbk3Hk (swarm) http://mesos.apache.org/
NERD ADVICERun your hosts on safe, light OSlike CoreOShttps://coreos.com/
NERD ADVICEUse Alpine for your containers,it’s a minimal security-orientedLinux distrohttp://goo.gl/MF4nKp
NERD ADVICEAvoid runningcontainers asroothttp://goo.gl/MF4nKp
NERD ADVICERegularly scanyour clusters tosee if there’s anysecurity gotchahttps://goo.gl/l8tO31
NERD ADVICEIsolate “colanders” like jenkins in containershttps://goo.gl/1HuQjV
NERD ADVICEStop manually installing software on your own machinehttps://goo.gl/9fHWHU
NERD ADVICELive like it’s 2016https://goo.gl/2FNwGqhttps://github.com/coreos/rkthttps://runc.io/