How to build container blocks

by | Jun 22, 2017

We begin today a series of interesting articles published in that advance certain contents of the new course of Linux Foundation on Containers Fundamentals . This course is aimed at people with no prior knowledge of container technologies.

In this article, we are going to talk about three characteristics of the Linux kernel: Namespaces, group control and UnionFS.

Namespace is responsible for isolating and virtualizing system resources for a process, so that each process has its own resource, such as its own IP address, hostname, and so on. The system resources that can be virtualized are: mount [mnt], process ID [PID], network [net], Interprocess Communication [IPC], hostnames [UTS], and users [User IDs].

Using Namespace, we can isolate one process from another. As a container is a kernel process, we can also use this feature to isolate a container from another.

Another important feature that can be used with containers is group control. It is used to limit and isolate user resources, such as CPU, memory, disk, network, etc. And with UnionFS we can superimpose two or more directories and implement layered containers.

For more details, you can check this video.



Submit a Comment

Your email address will not be published. Required fields are marked *

Recent posts

VDI: The most secure environment for hybrid working

Today is Data Privacy Day. The purpose of this date is to raise awareness and promote privacy and data protection best practices. It was initiated by the European Commission, the Council of Europe, and the Data Protection authorities of the European Union’s member states. Their main goal was to drive attention to the importance of privacy, user data protection, and compliance of the General Data Protection Regulation (RGPD). It is a regulation characterized by significant fines for non-compliance since its implementation in 2018.


Stay up to date with all the news from UDS ENTERPRISE through our social networks. Follow us!

Skip to content