Professional Documents
Culture Documents
Containers are a type of operating system (OS)–level virtualization that provides an isolated,
resource-controlled environment to run applications. A container is basically a type of sandbox
around a normal application OS process and is generally considered to be much more isolated
than an uncontainerized process, but not as strong as a virtual machine (VM).
Container images define how applications are packaged and only contain the application and
its dependencies such as libraries, configurations, runtimes, and tools, making a container
more lightweight than a VM. The container image and runtime are standardized through the
Open Container Initiative (OCI), which makes containers highly portable and universal, and It
makes development and deployment easier.
With docker we can easily package up our application with everything it needs and run it
anywhere on any machine with docker.
>> simply tell Docker to bring up the app, and docker will automatically download and run all
the dependencies inside an isolated environment called a container.
>>This isolated environment allows multiple apps to use different versions of some software
side by side. All these apps can run on the same machine side by side without messing with
each other (ISOLATION).
>>When we are done with the app we can remove it with it’s dependencies in one go.
>> docker virtualize the application layer of an OS, but uses the host kernel
Docker architecture :
It uses a Client-server architecture.
The Client component that talks to server is called REST API.
The server is called docker engine and sets on the background and takes care of building
an running containers.
Image contents:
A cut-down OS.
A runtime environment.
App files.
Environment variables.
3. a docker file is created and given to docker for packaging the app into an image.
>> Once we have the image we can push it to a docker registry(docker hub) which is a storage
for docker images that anyone(that run docker) can pull the image and use it to start a
container.
>> So with docker we no longer need to maintain long complex release documents that have
to be precisely followed. all the instructions for building an image of an application is written
in a docker file, and with it we can package the app into an image, and run the image virtually
anywhere.
Container Registry
Container Registry is a single place for your team to manage Docker images, perform
vulnerability analysis, and decide who can access what with fine-grained access control.
The smallest unit of execution for an application running in Kubernetes is the Kubernetes Pod,
which consists of one or more containers. Kubernetes Pods run on worker nodes.
When you deploy an AKS cluster, the Kubernetes master and all nodes are deployed and
configured for you.