<div dir="ltr">The most interesting subject around docker is security and the fact that it provides pretty much null actual "containerisation"<div><br></div><div><a href="https://www.youtube.com/watch?v=zWGFqMuEHdw">https://www.youtube.com/watch?v=zWGFqMuEHdw</a><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On 26 January 2015 at 18:57, Prentice Bisbal <span dir="ltr"><<a href="mailto:prentice.bisbal@rutgers.edu" target="_blank">prentice.bisbal@rutgers.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">It's amazing what you can get published. Those results seem pretty obvious to me.<div class="HOEnZb"><div class="h5"><br>
<br>
On 01/21/2015 04:26 PM, Andrew Holway wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
*yawn*<br>
<br>
On 19 August 2014 at 18:16, Kilian Cavalotti<br>
<<a href="mailto:kilian.cavalotti.work@gmail.com" target="_blank">kilian.cavalotti.work@gmail.<u></u>com</a>> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi all,<br>
<br>
On Tue, Aug 19, 2014 at 7:10 AM, Douglas Eadline <<a href="mailto:deadline@eadline.org" target="_blank">deadline@eadline.org</a>> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
I ran across this interesting paper by IBM:<br>
An Updated Performance Comparison of Virtual Machines and Linux Containers<br>
</blockquote>
It's an interesting paper, but I kind of feel it's comparing apple to<br>
oranges. They're both round and tasty, but it's not really the same<br>
thing.<br>
<br>
There's probably no need to detail this, but KVM is a virtualization<br>
infrastructure that run full stack OSes (using their own kernels) on<br>
top of a Linux kernel turned into an hypervisor. So yes, it carries<br>
the overhead of running a kernel over a kernel, but also the<br>
flexibility of doing so (ie. you can run different kernel/OS versions<br>
on top of each other, use virtual devices and so on).<br>
Docker, on the other hand, is a containerization infrastructure that<br>
run processes on top of an existing, regular kernel. Not to diminish<br>
its merits, which are great in many areas, but it's closer to a kind<br>
of glorified chroot.<br>
<br>
So, it's no surprise that Docker performance would be the same as the<br>
underlying OS's, while KVM overhead is much more important. There's a<br>
full layer of virtualization difference between the two.<br>
<br>
And they also a ran single VM or container per host. It would probably<br>
also be interesting to see what happens when your run multiple VMs or<br>
multiple containers on the same host.<br>
<br>
I guess it's nice somebody took the time to do the test, to ensure<br>
that Docker management or the LXC infrastructure was not impacting the<br>
containers performance too much, but I'm not sure I really understand<br>
the goal of the paper. Worst case, it will probably be misleading for<br>
people who will end up comparing two different tools with very<br>
different purposes and use cases. "What do you mean I can not upgrade<br>
the kernel in my container?"<br>
<br>
Cheers,<br>
--<br>
Kilian<br>
______________________________<u></u>_________________<br>
Beowulf mailing list, <a href="mailto:Beowulf@beowulf.org" target="_blank">Beowulf@beowulf.org</a> sponsored by Penguin Computing<br>
To change your subscription (digest mode or unsubscribe) visit <a href="http://www.beowulf.org/mailman/listinfo/beowulf" target="_blank">http://www.beowulf.org/<u></u>mailman/listinfo/beowulf</a><br>
</blockquote>
______________________________<u></u>_________________<br>
Beowulf mailing list, <a href="mailto:Beowulf@beowulf.org" target="_blank">Beowulf@beowulf.org</a> sponsored by Penguin Computing<br>
To change your subscription (digest mode or unsubscribe) visit <a href="http://www.beowulf.org/mailman/listinfo/beowulf" target="_blank">http://www.beowulf.org/<u></u>mailman/listinfo/beowulf</a><br>
</blockquote>
<br>
<br></div></div><span class="HOEnZb"><font color="#888888">
-- <br>
Prentice Bisbal<br>
Manager of Information Technology<br>
Rutgers Discovery Informatics Institute (RDI2)<br>
Rutgers University<br>
<a href="http://rdi2.rutgers.edu" target="_blank">http://rdi2.rutgers.edu</a></font></span><div class="HOEnZb"><div class="h5"><br>
<br>
______________________________<u></u>_________________<br>
Beowulf mailing list, <a href="mailto:Beowulf@beowulf.org" target="_blank">Beowulf@beowulf.org</a> sponsored by Penguin Computing<br>
To change your subscription (digest mode or unsubscribe) visit <a href="http://www.beowulf.org/mailman/listinfo/beowulf" target="_blank">http://www.beowulf.org/<u></u>mailman/listinfo/beowulf</a><br>
</div></div></blockquote></div><br></div>