meetup docker : from zero to hero

Les Meetups Veille Techno’

Meetup Veille Techno’

Docker : From Zero to Hero

Principles• Open to all : everybody’s welcome !– Speakers– Attendees

• Based on BBL– A cutting edge technology– A concept introduced in a customer

• There’s a groupe on Yammer !

What is Docker ?

• Docker is an ecosystem• Based on 7 projects– Engine– Registry– Kitematic– Machine– Swarm– Compose– Networking

Why Docker ?

The challenge

The matrix from hell

Cargo transport pre-1960

Also a matrix from hell

Solution : intermodal shipping container

Docker is a container system for code

Docker eliminates the matrix from hell

Why developers care• Build once... (finally) run anywhere

– A clean, safe, hygienic, portable runtime environment for your app.– No worries about missing dependencies, packages and other pain points

during subsequent deployments.– Run each app in its own isolated container, so you can run various versions

of libraries and other dependencies for each app without worrying.– Automate testing, integration, packaging...anything you can script.– Reduce/eliminate concerns about compatibility on different platforms,

either your own or your customers.– Cheap, zero-penalty containers to deploy services. A VM without the

overhead of a VM. Instant replay and reset of image snapshots.

Why administrators care ?• Configure once... run anything

– Make the entire lifecycle more efficient, consistent, and repeatable– Increase the quality of code produced by developers.– Eliminate inconsistencies between development, test, production,

and customer environments.– Support segregation of duties.– Significantly improves the speed and reliability of continuous

deployment and continuous integration systems.– Because the containers are so lightweight, address significant

performance, costs, deployment, and portability issues normally associated with VMs.

How does it work ?

VMs vs containers

Basics of a Docker system

Changes and updates

Docker projects

DOCKER ENGINE

• Namespaces– User (To be implemented)– Pid– Net– Ipc– Mnt– Uts

• Cgroups– Memory– IO– Cpu

• Security– AppArmor– SELinux

• Filesystems– Aufs– Btrfs– Overlayfs– Vfs– Unionfs– DeviceMapper

• Dockerfile– It’s like a makefile, but for your image– File to build your image– Plenty of keywords

• FROM• RUN• EXPOSE• CMD• …

• Builds– You have to build you container before running it– Each command of your Dockerfile create a new

layer in you image

• Variables– You can pass environment variables to your runing

container

• Ports– You can expose ports from you container– Without a port, a container cannot be reached

from the outside world

• Links– You an link docker containers together without

exposing ports– Environement variables are predictable

• Data containers– Datas are not persisted in a container– Datas sontainers can act like filesystem for

container– They can be linked to containers

• Volumes– You can pass « anything » you want to a container– Everything is file in a Linux system

DOCKER COMPOSE

• Docker-compose is orchestration for Docker• Based on yaml syntax• TOSCA-like description

DOCKER SWARM

• Docker swarm is native cluster system for Docker

• One master, several slaves• You can decide on which daemon you run

your apps– Affinity– Contraint

Integration with Mesos

DOCKER MACHINE

• Used to provide Docker on fresh servers• Lots of backend– GCE– AWS– Virtualbox…

• Define environment variables easily• Can create easy swarm cluster

KITEMATIC

• Kitematic is easy Docker on Mac• Soon on Windows !

REGISTRY

• Docker image to provide stateless, highly scalable server side application that stores and lets you distribute Docker images

• Docker hub is public registry• Great for CI/CD system

• You can pull images from a private registry– docker pull registry-1.docker.io/library/ubuntu

• There is also managed registry from Docker (not free) and licenced trusted registry

LIBNETWORK

• Native network in Docker– Bridge– SDN– …

• Pluggable• Isolated

ORCHESTRATION

Orchestration• CoreOS• Mesos• Tutum• Helios (Spotify)• Kubernetes (Google)

ECOSYSTEM

Ecosystem• Plennnnnnnty of projects– Mini-PaaS– Service discovery– Orchestrator– Launcher

• Everyone wants to be part of it !

• Some really nice projects– CoreOS– Deis/Flynn– Mesos– Project Atomic– Tutum– Joyent Triton

USECASES

WHAT’S NEW ?Dockercon June

• OpenContainer project– runc– appc

• Docker on Windows native• Pluggable addon

SUJETARTICLE DU MONDE

CONTENU ARTICLE

meetup docker : from zero to hero

Internet

docker chicago meetup - july 2014

performance monitoring for docker environments - docker...

meetup docker paris

docker online meetup #22: docker networking

nyc docker meetup: contiv networking on docker

[nyc meetup] docker at nuxeo

docker and openstack boston meetup

docker @ data science meetup

docker meetup 08 03-2016

antonis kalipetis - @akalipetis docker athens...

docker meetup: docker networking 1.11 with madhu venugopal

docker online meetup #28: production-ready docker swarm

docker meetup - paas interoperability

docker online meetup: announcing docker ce + ee

what's new in docker - infrakit - docker meetup berlin 2016

docker introduction - devops montreal meetup

chicago docker meetup presentation - mediafly

docker meetup: docker networking 1.11, by madhu venugopal

docker-hanoi meetup #1: introduction about docker

container orchestration @docker meetup hamburg