meetup docker : from zero to hero

Les Meetups Veille Techno’

Meetup Veille Techno’

Docker : From Zero to Hero


Principles• Open to all : everybody’s welcome !– Speakers– Attendees

• Based on BBL– A cutting edge technology– A concept introduced in a customer

• There’s a groupe on Yammer !


What is Docker ?


• Docker is an ecosystem• Based on 7 projects– Engine– Registry– Kitematic– Machine– Swarm– Compose– Networking


Why Docker ?


The challenge


The matrix from hell


Cargo transport pre-1960


Also a matrix from hell


Solution : intermodal shipping container


Docker is a container system for code


Docker eliminates the matrix from hell


Why developers care• Build once... (finally) run anywhere

– A clean, safe, hygienic, portable runtime environment for your app.– No worries about missing dependencies, packages and other pain points

during subsequent deployments.– Run each app in its own isolated container, so you can run various versions

of libraries and other dependencies for each app without worrying.– Automate testing, integration, packaging...anything you can script.– Reduce/eliminate concerns about compatibility on different platforms,

either your own or your customers.– Cheap, zero-penalty containers to deploy services. A VM without the

overhead of a VM. Instant replay and reset of image snapshots.


Why administrators care ?• Configure once... run anything

– Make the entire lifecycle more efficient, consistent, and repeatable– Increase the quality of code produced by developers.– Eliminate inconsistencies between development, test, production,

and customer environments.– Support segregation of duties.– Significantly improves the speed and reliability of continuous

deployment and continuous integration systems.– Because the containers are so lightweight, address significant

performance, costs, deployment, and portability issues normally associated with VMs.


How does it work ?


VMs vs containers


Basics of a Docker system


Changes and updates


Docker projects


DOCKER ENGINE


• Namespaces– User (To be implemented)– Pid– Net– Ipc– Mnt– Uts


• Cgroups– Memory– IO– Cpu


• Security– AppArmor– SELinux


• Filesystems– Aufs– Btrfs– Overlayfs– Vfs– Unionfs– DeviceMapper


• Dockerfile– It’s like a makefile, but for your image– File to build your image– Plenty of keywords

• FROM• RUN• EXPOSE• CMD• …


• Builds– You have to build you container before running it– Each command of your Dockerfile create a new

layer in you image


• Variables– You can pass environment variables to your runing

container


• Ports– You can expose ports from you container– Without a port, a container cannot be reached

from the outside world


• Links– You an link docker containers together without

exposing ports– Environement variables are predictable


• Data containers– Datas are not persisted in a container– Datas sontainers can act like filesystem for

container– They can be linked to containers


• Volumes– You can pass « anything » you want to a container– Everything is file in a Linux system


Demo


DOCKER COMPOSE


• Docker-compose is orchestration for Docker• Based on yaml syntax• TOSCA-like description


Demo


DOCKER SWARM


• Docker swarm is native cluster system for Docker

• One master, several slaves• You can decide on which daemon you run

your apps– Affinity– Contraint


Integration with Mesos


DOCKER MACHINE


• Used to provide Docker on fresh servers• Lots of backend– GCE– AWS– Virtualbox…

• Define environment variables easily• Can create easy swarm cluster


KITEMATIC


• Kitematic is easy Docker on Mac• Soon on Windows !


REGISTRY


• Docker image to provide stateless, highly scalable server side application that stores and lets you distribute Docker images

• Docker hub is public registry• Great for CI/CD system


• You can pull images from a private registry– docker pull registry-1.docker.io/library/ubuntu


• There is also managed registry from Docker (not free) and licenced trusted registry


LIBNETWORK


• Native network in Docker– Bridge– SDN– …

• Pluggable• Isolated


ORCHESTRATION


Orchestration• CoreOS• Mesos• Tutum• Helios (Spotify)• Kubernetes (Google)


ECOSYSTEM


Ecosystem• Plennnnnnnty of projects– Mini-PaaS– Service discovery– Orchestrator– Launcher

• Everyone wants to be part of it !


• Some really nice projects– CoreOS– Deis/Flynn– Mesos– Project Atomic– Tutum– Joyent Triton


USECASES


WHAT’S NEW ?Dockercon June


• OpenContainer project– runc– appc

• Docker on Windows native• Pluggable addon


SUJETARTICLE DU MONDE

CONTENU ARTICLE

THEME


meetup docker : from zero to hero

Internet